CVE-2021-38120

Name of the Vulnerable Software and Affected Versions NetIQ Advance Authentication versions prior to 6.3.5.1

Description A vulnerability identified in Advance Authentication allows bash command injection in administrative controlled functionality of backup due to improper handling in provided command parameters.

Recommendations For versions prior to 6.3.5.1, update to version 6.3.5.1 to protect against exploitation. As a temporary workaround, consider restricting access to the administrative controlled functionality of backup until a patch is available. Avoid using the affected functionality in the backup process until the issue is resolved.