Lucene search
K

197 matches found

Positive Technologies
Positive Technologies
added 2025/05/28 12:0 a.m.9 views

PT-2025-23107 · Netwrix · Netwrix Directory Manager

Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 and earlier Netwrix Directory Manager versions later than 11.1.25134.03 Description: The issue concerns a hardcoded password in the software. Recommendations: For versions 11.0.0.0 and earlier, upda...

5.3CVSS6.5AI score0.00298EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/28 12:0 a.m.13 views

CVE-2025-48749

Netwrix Directory Manager formerly Imanami GroupID v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent Data...

0.00375EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/28 12:0 a.m.11 views

CVE-2025-48746

Netwrix Directory Manager formerly Imanami GroupID v.11.0.0.0 and before, as well as after v.11.1.25134.03 lacks Authentication for a Critical Function...

0.00245EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/28 12:0 a.m.14 views

CVE-2025-47748

Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password...

0.00298EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.6 views

Netwrix Directory Manager 安全漏洞

Netwrix Directory Manager is a group and user management software from Netwrix. A security vulnerability exists in Netwrix Directory Manager v.11.0.0.0 and prior and subsequent v.11.1.25134.03 versions, which stems from a lack of authentication for critical functions...

6.5CVSS6.9AI score0.00245EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.4 views

Netwrix Directory Manager 安全漏洞

Netwrix Directory Manager is a group and user management software from Netwrix, Inc. A security vulnerability exists in Netwrix Directory Manager versions v.11.0.0.0 through v.11.1.25134.03, which originates from hard-coded passwords...

5.3CVSS6.7AI score0.00298EPSS
Exploits0References4
CVE
CVE
added 2025/05/28 12:0 a.m.54 views

CVE-2025-48749

Netwrix Directory Manager (formerly Imanami GroupID) is affected by CVE-2025-48749. The issue concerns the insertion of sensitive information into sent data. Affected software: Netwrix Directory Manager versions prior to 11.1.25134.03 (per multiple sources); remediation guidance from PT-Security ...

9.1CVSS7.2AI score0.00375EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/05/28 12:0 a.m.57 views

CVE-2025-48746

Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and earlier, and post-v11.1.25134.03, lack authentication for a critical function. Root cause beyond “lack of authentication” is not detailed in the provided sources. CVSSv3.1 base score 6.5 (NETWORK, LOW confidentiality/integrity imp...

6.5CVSS7.3AI score0.00245EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/28 12:0 a.m.5 views

CVE-2025-47748

Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password...

5.4AI score0.00298EPSS
Exploits0References2
CVE
CVE
added 2025/05/28 12:0 a.m.64 views

CVE-2025-47748

Netwrix Directory Manager vulnerable versions: 11.0.0.0 and earlier, and 11.1.25134.03 and later, contain a hardcoded password. This is a configuration/credential risk that could lead to credential exposure via a hardcoded secret. Remediation exists in linked advisories: update to a version where...

5.3CVSS6.8AI score0.00298EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/05/28 12:0 a.m.11 views

CVE-2025-48747

Netwrix Directory Manager formerly Imanami GroupID before and including v.11.0.0.0 and after v.11.1.25134.03 has Incorrect Permission Assignment for a Critical Resource...

0.00219EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/28 12:0 a.m.5 views

PT-2025-23108 · Netwrix · Netwrix Directory Manager

Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 and earlier, as well as versions after 11.1.25134.03 Description: The issue is related to a lack of authentication for a critical function. Recommendations: For versions 11.0.0.0 and earlier, as wel...

6.5CVSS6.3AI score0.00245EPSS
Exploits0References7
CVE
CVE
added 2025/05/28 12:0 a.m.53 views

CVE-2025-48747

CVE-2025-48747 affects Netwrix Directory Manager (formerly Imanami GroupID). Versions prior to 11.1.25134.03 or after 11.0.0.0 are impacted by Incorrect Permission Assignment for a Critical Resource. The issue is documented across multiple feeds (NVD/Red Hat/CVE list). Remediation: upgrade to ver...

5CVSS7.1AI score0.00219EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:28 a.m.5 views

CVE-2024-36074

Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the Endpoint Protector and Unify agent in the way that the EasyLock dependency is acquired from the server. An attacker with administrative access to the Endpoint...

7.2CVSS8AI score0.00786EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:32 a.m.9 views

CVE-2019-14969

Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and sub-folders. In addition, the service Netwrix.ADA.StorageAuditService which writes to that directory does not perform proper impersonation, and thus the target file will have the same...

7.8CVSS7.4AI score0.00466EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/05 12:28 a.m.25 views

CVE-2025-26817

Netwrix Password Secure 9.2.0.32454 allows OS command injection...

9.8CVSS7.3AI score0.01587EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/05 12:28 a.m.19 views

CVE-2025-26818

Netwrix Password Secure through 9.2 allows command injection...

9.8CVSS7.3AI score0.01112EPSS
Exploits0References1
OSV
OSV
added 2025/04/03 8:15 p.m.3 views

CVE-2025-26818

Netwrix Password Secure through 9.2 allows command injection...

9.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2025/04/03 8:15 p.m.2 views

CVE-2025-26817

Netwrix Password Secure 9.2.0.32454 allows OS command injection...

9.8CVSS7.5AI score0.01587EPSS
Exploits0References3
NVD
NVD
added 2025/04/03 8:15 p.m.7 views

CVE-2025-26817

Netwrix Password Secure 9.2.0.32454 allows OS command injection...

9.8CVSS0.01587EPSS
Exploits0References3
Rows per page
Query Builder