CVE-2017-7425 HIGH

CVE-2017-7425: Multiple Reflected XSS in iManager

Vendor Netiq Corporation

Product NetIQ iManager

Published November 6, 2017

Last update August 5, 2024

CVSS base score

7.6/10

Attack vector Adjacent

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

What the vulnerability does

01Description

Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.

Key dates

November 6, 2017 CVE published

August 5, 2024 Record updated

External resources

CVE CVE-2017-7425

CVSS 7.6 / HIGH

Vendor Netiq Corporation

Product NetIQ iManager

Affected 2.7.7 Patch 10 HF2

Vendor Netiq Corporation

Product NetIQ iManager

Affected 3.0.3.2