Upstream information
Description
External Entity Processing (XXE) vulnerability in the "risk score" application of NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to disclose the content of local files to logged-in users.SUSE information
Overall state of this security issue: Does not affect SUSE products
No SUSE Bugzilla entries cross referenced.SUSE Security Advisories:
- TID7017797, published Sa 3. Mär 12:02:49 CET 2018
SUSE Timeline for this CVE
CVE page created: Thu Mar 23 09:47:10 2017CVE page last modified: Tue Jul 1 12:28:36 2025