High severity8.8NVD Advisory· Published Mar 23, 2017· Updated Jun 17, 2026
CVE-2016-5750
CVE-2016-5750
Description
The certificate upload feature in iManager in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to upload JSP pages that would be executed as the iManager user, allowing code execution by logged-in remote users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:netiq:access_manager:4.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:netiq:access_manager:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:netiq:access_manager:4.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:netiq:access_manager:4.1:sp2:*:*:*:*:*:*
- cpe:2.3:a:netiq:access_manager:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:netiq:access_manager:4.2:sp1:*:*:*:*:*:*
- (no CPE)range: < 4.1.2 Hot Fix 1, < 4.2.2
- Range: < 4.1.2 Hot Fix 1, < 4.2.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.