Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-1470

Authorization Bypass Through User-Controlled Key vulnerability in NetIQ (OpenText) Client Login Extension on Windows allows Privilege Escalation, Code Injection.This issue only affects NetIQ Client Login Extension: 4.6.

Published

2024-02-29T01:43:51.340

Last Modified

2025-02-14T17:24:17.347

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-639
Type: Primary
CWE-639

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	netiq	client_login_extension	4.6	Yes

References

https://portal.microfocus.com/s/article/KM000026667?language=en_US Third Party Advisory ([email protected])
https://portal.microfocus.com/s/article/KM000026667?language=en_US Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)