CVE-2021-22509
Handling of sensitive data in process memory in NetIQ Advance Authentication
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.1EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
28 Aug 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L
Affected products
OpenText · NetIQ Advance AuthenticationWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →