Filtered by vendor Microfocus
Subscribe
Total
271 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-38121 | 1 Microfocus | 1 Netiq Advanced Authentication | 2026-06-17 | N/A | 8.3 HIGH |
| Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authentication versions before 6.3.5.1 | |||||
| CVE-2021-38120 | 1 Microfocus | 1 Netiq Advanced Authentication | 2026-06-17 | N/A | 5.1 MEDIUM |
| A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper handling in provided command parameters. This issue affects NetIQ Advance Authentication version before 6.3.5.1. | |||||
| CVE-2021-38119 | 1 Microfocus | 1 Imanager | 2026-06-17 | N/A | 6.1 MEDIUM |
| Possible Reflected Cross-Site Scripting (XSS) Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | |||||
| CVE-2021-38118 | 1 Microfocus | 1 Imanager | 2026-06-17 | N/A | 5.5 MEDIUM |
| Possible improper input validation Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | |||||
| CVE-2021-38117 | 1 Microfocus | 1 Imanager | 2026-06-17 | N/A | 8.8 HIGH |
| Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | |||||
| CVE-2021-38116 | 1 Microfocus | 1 Imanager | 2026-06-17 | N/A | 8.8 HIGH |
| Possible Elevation of Privilege Vulnerability in iManager has been discovered in OpenText™ iManager. This impacts all versions before 3.2.5 | |||||
| CVE-2021-22535 | 1 Microfocus | 1 Netiq Directory And Resource Administrator | 2026-06-17 | 2.7 LOW | 4.9 MEDIUM |
| Unauthorized information security disclosure vulnerability on Micro Focus Directory and Resource Administrator (DRA) product, affecting all DRA versions prior to 10.1 Patch 1. The vulnerability could lead to unauthorized information disclosure. | |||||
| CVE-2021-22533 | 1 Microfocus | 1 Edirectory | 2026-06-17 | N/A | 6.5 MEDIUM |
| Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000. | |||||
| CVE-2021-22532 | 1 Microfocus | 1 Edirectory | 2026-06-17 | N/A | 7.6 HIGH |
| Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenText™ eDirectory before 9.2.4.0000. | |||||
| CVE-2021-22531 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 4.3 MEDIUM | 6.1 MEDIUM |
| A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0 | |||||
| CVE-2021-22530 | 1 Microfocus | 1 Netiq Advanced Authentication | 2026-06-17 | N/A | 8.2 HIGH |
| A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. This issue may lead to user account compromise if successful or may impact server performance. This issue impacts all NetIQ Advance Authentication before 6.3.5.1 | |||||
| CVE-2021-22529 | 1 Microfocus | 1 Netiq Advanced Authentication | 2026-06-17 | N/A | 6.3 MEDIUM |
| A vulnerability identified in NetIQ Advance Authentication that leaks sensitive server information. This issue affects NetIQ Advance Authentication version before 6.3.5.1 | |||||
| CVE-2021-22528 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 3.5 LOW | 8.0 HIGH |
| Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | |||||
| CVE-2021-22527 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 5.0 MEDIUM | 6.0 MEDIUM |
| Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | |||||
| CVE-2021-22526 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 5.8 MEDIUM | 4.9 MEDIUM |
| Open Redirection vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | |||||
| CVE-2021-22525 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 2.1 LOW | 5.5 MEDIUM |
| This release addresses a potential information leakage vulnerability in NetIQ Access Manager versions prior to 5.0.1 | |||||
| CVE-2021-22524 | 1 Microfocus | 1 Access Manager | 2026-06-17 | 4.0 MEDIUM | 5.4 MEDIUM |
| Injection attack caused the denial of service vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | |||||
| CVE-2021-22523 | 1 Microfocus | 1 Verastream Host Integrator | 2026-06-17 | 6.8 MEDIUM | 7.6 HIGH |
| XML External Entity vulnerability in Micro Focus Verastream Host Integrator, affecting version 7.8 Update 1 and earlier versions. The vulnerability could allow the control of web browser and hijacking user sessions. | |||||
| CVE-2021-22522 | 1 Microfocus | 1 Verastream Host Integrator | 2026-06-17 | 6.8 MEDIUM | 7.1 HIGH |
| Reflected Cross-Site Scripting vulnerability in Micro Focus Verastream Host Integrator, affecting version version 7.8 Update 1 and earlier versions. The vulnerability could allow disclosure of confidential data. | |||||
| CVE-2021-22521 | 1 Microfocus | 2 Zenworks Configuration Management, Zenworks Endpoint Security Management | 2026-06-17 | 7.2 HIGH | 6.7 MEDIUM |
| A privileged escalation vulnerability has been identified in Micro Focus ZENworks Configuration Management, affecting version 2020 Update 1 and all prior versions. The vulnerability could be exploited to gain unauthorized system privileges. | |||||