Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for identity_manager_identity_applications by novell

    CVE-2016-1598 (GCVE-0-2016-1598)

    Vulnerability from nvd – Published: 2016-10-27 20:00 – Updated: 2024-08-05 23:02
    VLAI
    Summary
    XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages.
    Severity
    No CVSS data available.
    CWE
    • unspecified
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a NetIQ IDM 4.5 Identity Applications before 4.5.4 Affected: NetIQ IDM 4.5 Identity Applications before 4.5.4
    Date Public
    2016-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T23:02:11.722Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "93833",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/93833"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "NetIQ IDM 4.5 Identity Applications before 4.5.4",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "NetIQ IDM 4.5 Identity Applications before 4.5.4"
                }
              ]
            }
          ],
          "datePublic": "2016-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "unspecified",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-01-06T16:15:42.000Z",
            "orgId": "f81092c5-7f14-476d-80dc-24857f90be84",
            "shortName": "microfocus"
          },
          "references": [
            {
              "name": "93833",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/93833"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@microfocus.com",
              "ID": "CVE-2016-1598",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "NetIQ IDM 4.5 Identity Applications before 4.5.4",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "NetIQ IDM 4.5 Identity Applications before 4.5.4"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "unspecified"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "93833",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/93833"
                },
                {
                  "name": "https://download.novell.com/Download?buildid=xyswDCMsT7I~",
                  "refsource": "CONFIRM",
                  "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f81092c5-7f14-476d-80dc-24857f90be84",
        "assignerShortName": "microfocus",
        "cveId": "CVE-2016-1598",
        "datePublished": "2016-10-27T20:00:00.000Z",
        "dateReserved": "2016-01-12T00:00:00.000Z",
        "dateUpdated": "2024-08-05T23:02:11.722Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2016-1598 (GCVE-0-2016-1598)

    Vulnerability from cvelistv5 – Published: 2016-10-27 20:00 – Updated: 2024-08-05 23:02
    VLAI
    Summary
    XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages.
    Severity
    No CVSS data available.
    CWE
    • unspecified
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a NetIQ IDM 4.5 Identity Applications before 4.5.4 Affected: NetIQ IDM 4.5 Identity Applications before 4.5.4
    Date Public
    2016-10-27 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T23:02:11.722Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "93833",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/93833"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "NetIQ IDM 4.5 Identity Applications before 4.5.4",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "NetIQ IDM 4.5 Identity Applications before 4.5.4"
                }
              ]
            }
          ],
          "datePublic": "2016-10-27T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "unspecified",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-01-06T16:15:42.000Z",
            "orgId": "f81092c5-7f14-476d-80dc-24857f90be84",
            "shortName": "microfocus"
          },
          "references": [
            {
              "name": "93833",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/93833"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@microfocus.com",
              "ID": "CVE-2016-1598",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "NetIQ IDM 4.5 Identity Applications before 4.5.4",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "NetIQ IDM 4.5 Identity Applications before 4.5.4"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "unspecified"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "93833",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/93833"
                },
                {
                  "name": "https://download.novell.com/Download?buildid=xyswDCMsT7I~",
                  "refsource": "CONFIRM",
                  "url": "https://download.novell.com/Download?buildid=xyswDCMsT7I~"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f81092c5-7f14-476d-80dc-24857f90be84",
        "assignerShortName": "microfocus",
        "cveId": "CVE-2016-1598",
        "datePublished": "2016-10-27T20:00:00.000Z",
        "dateReserved": "2016-01-12T00:00:00.000Z",
        "dateUpdated": "2024-08-05T23:02:11.722Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }