197 matches found
PT-2025-23107 · Netwrix · Netwrix Directory Manager
Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 and earlier Netwrix Directory Manager versions later than 11.1.25134.03 Description: The issue concerns a hardcoded password in the software. Recommendations: For versions 11.0.0.0 and earlier, upda...
CVE-2025-48749
Netwrix Directory Manager formerly Imanami GroupID v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent Data...
CVE-2025-48746
Netwrix Directory Manager formerly Imanami GroupID v.11.0.0.0 and before, as well as after v.11.1.25134.03 lacks Authentication for a Critical Function...
CVE-2025-47748
Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password...
Netwrix Directory Manager 安全漏洞
Netwrix Directory Manager is a group and user management software from Netwrix. A security vulnerability exists in Netwrix Directory Manager v.11.0.0.0 and prior and subsequent v.11.1.25134.03 versions, which stems from a lack of authentication for critical functions...
Netwrix Directory Manager 安全漏洞
Netwrix Directory Manager is a group and user management software from Netwrix, Inc. A security vulnerability exists in Netwrix Directory Manager versions v.11.0.0.0 through v.11.1.25134.03, which originates from hard-coded passwords...
CVE-2025-48749
Netwrix Directory Manager (formerly Imanami GroupID) is affected by CVE-2025-48749. The issue concerns the insertion of sensitive information into sent data. Affected software: Netwrix Directory Manager versions prior to 11.1.25134.03 (per multiple sources); remediation guidance from PT-Security ...
CVE-2025-48746
Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and earlier, and post-v11.1.25134.03, lack authentication for a critical function. Root cause beyond “lack of authentication” is not detailed in the provided sources. CVSSv3.1 base score 6.5 (NETWORK, LOW confidentiality/integrity imp...
CVE-2025-47748
Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password...
CVE-2025-47748
Netwrix Directory Manager vulnerable versions: 11.0.0.0 and earlier, and 11.1.25134.03 and later, contain a hardcoded password. This is a configuration/credential risk that could lead to credential exposure via a hardcoded secret. Remediation exists in linked advisories: update to a version where...
CVE-2025-48747
Netwrix Directory Manager formerly Imanami GroupID before and including v.11.0.0.0 and after v.11.1.25134.03 has Incorrect Permission Assignment for a Critical Resource...
PT-2025-23108 · Netwrix · Netwrix Directory Manager
Name of the Vulnerable Software and Affected Versions: Netwrix Directory Manager versions 11.0.0.0 and earlier, as well as versions after 11.1.25134.03 Description: The issue is related to a lack of authentication for a critical function. Recommendations: For versions 11.0.0.0 and earlier, as wel...
CVE-2025-48747
CVE-2025-48747 affects Netwrix Directory Manager (formerly Imanami GroupID). Versions prior to 11.1.25134.03 or after 11.0.0.0 are impacted by Incorrect Permission Assignment for a Critical Resource. The issue is documented across multiple feeds (NVD/Red Hat/CVE list). Remediation: upgrade to ver...
CVE-2024-36074
Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the Endpoint Protector and Unify agent in the way that the EasyLock dependency is acquired from the server. An attacker with administrative access to the Endpoint...
CVE-2019-14969
Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and sub-folders. In addition, the service Netwrix.ADA.StorageAuditService which writes to that directory does not perform proper impersonation, and thus the target file will have the same...
CVE-2025-26817
Netwrix Password Secure 9.2.0.32454 allows OS command injection...
CVE-2025-26818
Netwrix Password Secure through 9.2 allows command injection...
CVE-2025-26818
Netwrix Password Secure through 9.2 allows command injection...
CVE-2025-26817
Netwrix Password Secure 9.2.0.32454 allows OS command injection...
CVE-2025-26817
Netwrix Password Secure 9.2.0.32454 allows OS command injection...