Lucene search

OpenTextCVE-2021-22533

HistorySep 12, 2024 - 1:15 p.m.

CVE-2021-22533

2024-09-1213:15:09

CWE-532

OpenText

web.nvd.nist.gov

sensitive information

log file

vulnerability

opentext edirectory 9.2.4.0000

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS

0.001

Percentile

39.6%

JSON

Possible Insertion of Sensitive Information into Log File Vulnerability

in eDirectory has been discovered in
OpenText™ eDirectory 9.2.4.0000.

Affected configurations

Nvd

Node

microfocusedirectoryRange<9.2.4.0000

VendorProductVersionCPE
microfocusedirectory*cpe:2.3:a:microfocus:edirectory:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microfocus	edirectory	*	cpe:2.3:a:microfocus:edirectory::::::::

CNA Affected

[
  {
    "defaultStatus": "affected",
    "platforms": [
      "Windows",
      "Linux",
      "64 bit"
    ],
    "product": "eDirectory",
    "vendor": "OpenText",
    "versions": [
      {
        "lessThan": "<",
        "status": "affected",
        "version": "9.2.4.0000",
        "versionType": "rpm, exe"
      }
    ]
  }
]

References

www.netiq.com/documentation/edirectory-92/edirectory925_releasenotes/data/edirectory925_releasenotes.html

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS

0.001

Percentile

39.6%

JSON

Related for CVE-2021-22533