Skip to main content

Netiq Self Service Password Reset

3 CVEs product

Monthly

CVE-2019-11674 MEDIUM This Month

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to 4.4.0.4. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Netiq Self Service Password Reset
NVD
CVSS 3.1
5.9
EPSS
0.4%
CVE-2019-11652 CRITICAL Act Now

A potential authorization bypass issue was found in Micro Focus Self Service Password Reset (SSPR) versions prior to: 4.4.0.3, 4.3.0.6, and 4.2.0.6. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Self Service Password Reset
NVD
CVSS 3.0
9.8
EPSS
2.1%
CVE-2019-11647 MEDIUM This Month

A potential XSS exists in Self Service Password Reset, in Micro Focus NetIQ Software all versions prior to version 4.4. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Netiq Self Service Password Reset
NVD
CVSS 3.0
6.1
EPSS
0.6%
EPSS 0% CVSS 5.9
MEDIUM This Month

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to 4.4.0.4. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Netiq Self Service Password Reset
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

A potential authorization bypass issue was found in Micro Focus Self Service Password Reset (SSPR) versions prior to: 4.4.0.3, 4.3.0.6, and 4.2.0.6. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Netiq Self Service Password Reset
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

A potential XSS exists in Self Service Password Reset, in Micro Focus NetIQ Software all versions prior to version 4.4. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Netiq Self Service Password Reset
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy