Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-22509

A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1

Published

2024-08-28T07:15:04.753

Last Modified

2024-09-13T18:05:11.483

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses

Type: Secondary
CWE-312
Type: Primary
CWE-312

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	microfocus	netiq_advanced_authentication	< 6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes
Application	microfocus	netiq_advanced_authentication	6.3	Yes

References

https://www.netiq.com/documentation/advanced-authentication-63/advanced-authentication-releasenotes-6351/data/advanced-authentication-releasenotes-6351.html Release Notes, Vendor Advisory ([email protected])