VYPR

Designer for Identity Manager

by Microfocus

CVEs (2)

  • CVE-2016-1592MedOct 27, 2016
    risk 0.40cvss 6.1epss 0.01

    XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote attackers to inject arbitrary HTML code via the nrfEntitlementReport.do CGI.

  • CVE-2015-0787MedOct 27, 2016
    risk 0.40cvss 6.1epss 0.01

    XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote attackers to inject arbitrary HTML code via the accessMgrDN value of the forgotUser.do CGI.