Upstream information

CVE-2017-5190 at MITRE


NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when configured as a SAML 2.0 Identity Server with Virtual Attributes, has a concurrency issue causing information leakage, related to a stale profile.

SUSE information

Overall state of this security issue: Does not affect SUSE products

SUSE Bugzilla entry: 1028633 [RESOLVED / FIXED]

SUSE Security Advisories:

  • TID7018792, published Sa 3. Mär 12:02:22 CET 2018

SUSE Timeline for this CVE

CVE page created: Thu Apr 20 19:15:36 2017
CVE page last modified: Wed Aug 2 19:31:14 2023