CVE-2021-22531

A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0

Link	Resource
https://www.microfocus.com/documentation/access-manager/5.0/accessmanager502-release-notes/accessmanager502-release-notes.html	Release Notes Vendor Advisory

Configuration 1

cpe:2.3:a:microfocus:access_manager:4.5:hotfix1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp1_hotfix1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp1_hotfix2:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp2:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp2_hotfix1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp2_hotfix2:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp3:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp3_hotfix1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp3_patch3:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp4:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:sp5:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:4.5:-:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:5.0:sp1:*:*:*:*:*:* cpe:2.3:a:microfocus:access_manager:5.0:-:*:*:*:*:*:*

---

Published : 2022-05-12 07:15

Updated : 2022-05-23 06:31

---

NVD link : CVE-2021-22531

Mitre link : CVE-2021-22531

No products.

CWE-79