Vulnerability in Microfocus Netiq_advanced_authentication

CVE-2021-22509

A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1

EPSS: 0.002 (9.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2021-22509?
CVE-2021-22509 is a high-severity vulnerability in Microfocus Netiq_advanced_authentication, classified under Cleartext Storage of Sensitive Information. CVSS score: 8.1/10. Published 2024-08-28.
How severe is CVE-2021-22509?
High severity. CVSS v3 base score is 8.1 out of 10.