CVE-2017-14800
CVSS 5.4 - MEDIUM
Description
A reflected cross site scripting attack in the NetIQ Access Manager before 4.3.3 using the "typecontainerid" parameter of the policy editor could allowed code injection into pages of authenticated users.
Affected Products
1| Vendor | Product | Version |
|---|---|---|
| netiq | access_manager |
All versions
|
References
Weakness Types
CWE-79
CVE Information
- CVE ID:
CVE-2017-14800- Published:
- 2018-03-01
- Modified:
- 2024-11-21
- CVSS Score:
- 5.4
- Severity:
- MEDIUM
- Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Affected Vendors
netiq
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL