Netiq · Netiq Access Manager · CVE-2021-22528
**Name of the Vulnerable Software and Affected Versions**
NetIQ Access Manager versions prior to 5.0.1
NetIQ Access Manager versions prior to 4.5.4
**Description**
The issue is a Reflected Cross Site Scripting (XSS) vulnerability. This means an attacker can inject malicious scripts into a website, which will then be executed by the user's browser.
**Recommendations**
For versions prior to 5.0.1, update to version 5.0.1 or later.
For versions prior to 4.5.4, update to version 4.5.4 or later.