PT-2018-18202 · Netiq · Netiq Identity Manager

Published

2018-03-28

Updated

2019-10-09

CVE-2018-7676

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions NetIQ Identity Manager versions prior to 4.7

Description The issue concerns the potential leak of sensitive information when the userapp has log or trace enabled.

Recommendations For versions prior to 4.7, consider disabling the log and trace features in the userapp to minimize the risk of sensitive information leakage until a fixed version is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2018-7676

Affected Products

Netiq Identity Manager

PT-2018-18202 · Netiq · Netiq Identity Manager

CVE-2018-7676

Weakness Enumeration

Related Identifiers

Affected Products

References · 3