XML External Entity (XXE) Vulnerabilities in NetIQ Identity Manager Plugins

XML External Entity (XXE) Vulnerabilities in NetIQ Identity Manager Plugins

CVE-2017-7426 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:P

The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.

Learn more about our Aws Audit.