CVE-2018-1342

A Vulnerability exists on Admin Console where an attacker can upload files to the Admin Console server, and potentially execute them. This impacts NetIQ Access Manager versions 4.3 and 4.4 as well as the Administrative console.

Published: Jan 26, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-1342
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-434

Affected Software
References

Software	From	Fixed in
netiq / access_manager	4.3	4.3.x
netiq / access_manager	4.4	4.4.x

https://www.novell.com/support/kb/doc.php?id=7022444

Vulnerability Database

289,599

CVE-2018-1342