GCVE - cpe:2.3:a:netiq:imanager:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:netiq:imanager:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Netiq (`94dcefbc-5583-5ff9-9c13-e684dd17d831`)
Product	Imanager (`df1f254a-a2b5-5dc7-9768-c0a466676272`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-38758`	vulnerable	2026-06-03 14:47:50.177484	XSS vulnerabilities in iManager HIGH (7.2) Cross-site Scripting (XSS) vulnerability in NetIQ iManager prior to version 3.2.6 allows attacker to execute malicious scripts on the user's browser. This issue affects: Micro Focus NetIQ iManager NetIQ iManager versions prior to 3.2.6 on ALL. Published: 2023-01-25T00:00:00.000Z Updated: 2025-03-27T20:15:28.363Z Open on db.gcve.eu Reference links https://www.netiq.com/documentation/imanager-32/imanager326_releasenotes/data/imanager326_releasenotes.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1347`	vulnerable	2026-06-03 14:38:31.029659	NetIQ iManager, versions prior to 3.1, reflected XSS issue MEDIUM (5.3) The administrative web interface in NetIQ iManager, versions prior to 3.1, are vulnerable to reflected cross site scripting. Published: 2018-03-21T14:00:00.000Z Updated: 2024-08-05T03:59:38.588Z Open on db.gcve.eu Reference links https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html http://www.securityfocus.com/bid/103492	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1345`	vulnerable	2026-06-03 14:38:31.028055	iManager elevation of privilege MEDIUM (5.9) NetIQ iManager, versions prior to 3.1, under some circumstances could be susceptible to an elevation of privilege attack. Published: 2018-03-21T14:00:00.000Z Updated: 2024-08-05T03:59:38.253Z Open on db.gcve.eu Reference links https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1344`	vulnerable	2026-06-03 14:38:31.027697	NetIQ iManager Communication Downgrade Attack LOW (3.1) Addresses potential communication downgrade attack in NetIQ iManager versions prior to 3.1 Published: 2018-03-21T14:00:00.000Z Updated: 2024-08-05T03:59:38.599Z Open on db.gcve.eu Reference links https://www.netiq.com/documentation/imanager-31/imanager31_releasenotes/data/imanager31_releasenotes.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-12462`	vulnerable	2026-06-03 14:38:04.385092	NetIQ iManager XSS vulnerabilities MEDIUM (4.8) NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities. Published: 2018-07-10T19:00:00.000Z Updated: 2024-09-16T18:56:13.274Z Open on db.gcve.eu Reference links https://support.microfocus.com/kb/doc.php?id=7016795	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-5189`	vulnerable	2026-06-03 14:37:18.659656	private SSL key embedded in JAR file in iManager MEDIUM (4.3) NetIQ iManager before 3.0.3 delivered a SSL private key in a Java application (JAR file) for authentication to Sentinel, allowing attackers to extract and establish their own connections to the Sentinel appliance. Published: 2018-03-02T20:00:00.000Z Updated: 2024-09-17T03:59:02.559Z Open on db.gcve.eu Reference links https://bugzilla.suse.com/show_bug.cgi?id=1021637 https://www.netiq.com/support/kb/doc.php?id=7016795	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.