Skip to main content

Netiq Advanced Authentication

5 CVEs product

Monthly

CVE-2023-24468 CRITICAL Act Now

Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-38753 MEDIUM This Month

This update resolves a multi-factor authentication bypass attack. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
CVSS 3.1
6.3
EPSS
0.5%
CVE-2021-22515 MEDIUM This Month

Multi-Factor Authentication (MFA) functionality can be bypassed, allowing the use of single factor authentication in NetIQ Advanced Authentication versions prior to 6.3 SP4 Patch 1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2021-22497 HIGH This Week

Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
CVSS 3.1
7.2
EPSS
0.8%
CVE-2019-11650 MEDIUM This Month

A potential Man in the Middle attack (MITM) was found in NetIQ Advanced Authentication Framework versions prior to 6.0. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Netiq Advanced Authentication
NVD
CVSS 3.1
5.9
EPSS
0.8%
EPSS 1% CVSS 9.8
CRITICAL Act Now

Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
EPSS 0% CVSS 6.3
MEDIUM This Month

This update resolves a multi-factor authentication bypass attack. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Multi-Factor Authentication (MFA) functionality can be bypassed, allowing the use of single factor authentication in NetIQ Advanced Authentication versions prior to 6.3 SP4 Patch 1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
EPSS 1% CVSS 7.2
HIGH This Week

Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Advanced Authentication
NVD
EPSS 1% CVSS 5.9
MEDIUM This Month

A potential Man in the Middle attack (MITM) was found in NetIQ Advanced Authentication Framework versions prior to 6.0. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Netiq Advanced Authentication
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy