Vulnerability in Microfocus Netiq_advanced_authentication
CVE-2021-38121
Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authentication versions before 6.3.5.1
EPSS: 0.002 (7.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.3 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L.
Affected products
- Microfocus Netiq_advanced_authentication — versions 6.3
- Opentext Netiq Advance Authentication — versions 6.3.5.1
Weakness classification (CWE)
References
- security@opentext.com (Release Notes, Vendor Advisory)
Frequently asked questions
- What is CVE-2021-38121?
- CVE-2021-38121 is a high-severity vulnerability in Microfocus Netiq_advanced_authentication, classified under Inadequate Encryption Strength. CVSS score: 8.3/10. Published 2024-08-28.
- How severe is CVE-2021-38121?
- High severity. CVSS v3 base score is 8.3 out of 10.