Novell Identity Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Novell Identity Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2016-1598 — CVSS 5.4 (medium): XSS in NetIQ IDM 4.5 Identity Applications before 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into…
CVE-2007-6625 — CVSS 5.0 (medium): The Platform Service Process (asampsp) in Fan-Out Driver Platform Services for Novell Identity Manager (IDM) 3.5.1 allows remote attackers…
CVE-2010-4324 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before…
CVE-2010-3264 — CVSS 2.1 (low): The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores admin tree credentials in /tmp/idmInstall.log, which allows local…