fkie_cve-2016-5751
Vulnerability from fkie_nvd
Published
2017-03-23 06:59
Modified
2025-04-20 01:37
Severity ?
6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials.
References
security@opentext.comhttps://www.novell.com/support/kb/doc.php?id=7017808
af854a3a-2127-422b-91ae-364da2661108https://www.novell.com/support/kb/doc.php?id=7017808
Impacted products
Vendor Product Version
netiq access_manager 4.1
netiq access_manager 4.1
netiq access_manager 4.1
netiq access_manager 4.2
netiq access_manager 4.2


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:netiq:access_manager:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5ADC4C66-A0B0-47E6-8084-C7FBEDC8E503",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netiq:access_manager:4.1:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "FF9068BB-5689-459A-A637-A12F31B36726",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netiq:access_manager:4.1:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "2E5148AA-24E9-4171-8B8F-FA9A1F378EF4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netiq:access_manager:4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "20239843-9281-4AEA-A8DE-E0FECFAE7BC5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netiq:access_manager:4.2:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "0FD82557-1FA6-4335-9A17-C14F27D9B713",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials."
    },
    {
      "lang": "es",
      "value": "Una URL de destino del finalizador no filtrado en la caracter\u00edstica SAML en Identity Server en NetIQ Access Manager 4.1 en versiones anteriores a 4.1.2 HF1 y 4.2 en versiones anteriores a 4.2.2 podr\u00edan utilizarse para desencadenar XSS y filtrar credenciales de autenticaci\u00f3n."
    }
  ],
  "id": "CVE-2016-5751",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-03-23T06:59:00.360",
  "references": [
    {
      "source": "security@opentext.com",
      "url": "https://www.novell.com/support/kb/doc.php?id=7017808"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.novell.com/support/kb/doc.php?id=7017808"
    }
  ],
  "sourceIdentifier": "security@opentext.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.