CVE-2023-24466
CRITICAL WAF: High
CVSS 9.8
Published: 2024-11-22
CWE-611 CWE-611
Possible XML External Entity Injection in iManager GET parameter has been discovered in OpenTextâ„¢ iManager 3.2.6.0200.
WAF Coverage Analysis
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| microfocus | imanager | 3.0 - 3.2.6 |
| microfocus | imanager | 3.2.6 |
| microfocus | imanager | 3.2.6 |
| microfocus | imanager | 3.2.6 |
References
- www.netiq.com (Release Notes)