Upstream information
Description
NetIQ Access Manager (NAM) 4.x before 4.0.1 HF3 allows remote authenticated administrators to discover service-account passwords via a request to (1) roma/jsp/volsc/monitoring/dev_services.jsp or (2) roma/jsp/debug/debug.jsp.SUSE information
Overall state of this security issue: Does not affect SUSE products
No SUSE Bugzilla entries cross referenced.SUSE Security Advisories:
- TID7015995, published Sun May 20 15:49:00 CEST 2018
- TID7017332, published Sa 3. Mär 11:59:56 CET 2018
SUSE Timeline for this CVE
CVE page created: Tue Dec 23 15:16:31 2014CVE page last modified: Tue Jul 1 12:23:09 2025