← Back

CVE-2023-24468

nvd nist
Published: Mar 15, 2023Modified: May 16, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2

Affected (15)

Microfocus
1 product
Netiq Advanced Authentication
Configuration A
15 vulnerable
Vulnerable SoftwareAffected Versions
Microfocus
Netiq Advanced Authentication
Before 6.3
Netiq Advanced Authentication
Version 6.3
Netiq Advanced Authentication
Version 6.3 sp1
Netiq Advanced Authentication
Version 6.3 sp2
Netiq Advanced Authentication
Version 6.3 sp3
Netiq Advanced Authentication
Version 6.3 sp4
Netiq Advanced Authentication
Version 6.3 sp4_patch1
Netiq Advanced Authentication
Version 6.3 sp5
Netiq Advanced Authentication
Version 6.3 sp5_patch1
Netiq Advanced Authentication
Version 6.3 sp5_patch2
Netiq Advanced Authentication
Version 6.3 sp6
Netiq Advanced Authentication
Version 6.3 sp6_patch1
Netiq Advanced Authentication
Version 6.3 sp7
Netiq Advanced Authentication
Version 6.4
Netiq Advanced Authentication
Version 6.4 sp1

Related CWEs

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (4)

Source: security@opentext.com
Release Notes
Source: security@opentext.com
Release Notes
Source: af854a3a-2127-422b-91ae-364da2661108
Release Notes
Source: af854a3a-2127-422b-91ae-364da2661108
Release Notes

Timeline

No history available yet.