Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NetIQ Identity Manager allowed uploading of user icons with incorrect types or extensions
Vulnerability Description
NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Micro Focus NetIQ Identity Manager 安全漏洞
Vulnerability Description
Micro Focus NetIQ Identity Manager是英国Micro Focus公司的一套身份认证管理解决方案。该方案为帐户供应、用户自助服务、授权和Web服务等提供了基础,并支持数据共享和同步。NetIQ Identity Manager Plugins是使用在其中的插件。 Micro Focus NetIQ Identity Manager 4.5.6.1之前版本中存在安全漏洞。攻击者可通过上传带有双重扩展或无图像内容的文件利用该漏洞执行代码或错误的引导用户。
CVSS Information
N/A
Vulnerability Type
N/A