CVE-2022-38753 : This update resolves a multi-factor authentication bypass attack

This update resolves a multi-factor authentication bypass attack

Published 2022-11-28 22:15:11

Updated 2025-04-25 21:15:34

Source OpenText

View at NVD, CVE.org

Products affected by CVE-2022-38753

Microfocus » Netiq Advanced Authentication
Versions before (<) 6.4
cpe:2.3:a:microfocus:netiq_advanced_authentication:*:*:*:*:*:*:*:*
Matching versions
Microfocus » Netiq Advanced Authentication » Version: 6.4
cpe:2.3:a:microfocus:netiq_advanced_authentication:6.4:-:*:*:*:*:*:*
Matching versions

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 8 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	2.8	3.4	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-04-25
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: Low
6.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	2.8	3.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: Low

Jump to