Upstream information
Description
The certificate upload feature in iManager in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to upload JSP pages that would be executed as the iManager user, allowing code execution by logged-in remote users.SUSE information
Overall state of this security issue: Does not affect SUSE products
No SUSE Bugzilla entries cross referenced.SUSE Security Advisories:
- TID7017807, published Sa 3. Mär 12:02:54 CET 2018
SUSE Timeline for this CVE
CVE page created: Thu Mar 23 09:47:11 2017CVE page last modified: Tue Jul 1 12:28:36 2025