7 matches found
CVE-2021-22532
OpenText eDirectory is affected by CVE-2021-22532, with a possible NLDAP Denial of Service vulnerability in OpenText eDirectory before 9.2.4.0000. Connected sources (RH, NVD, CVE lists) consistently describe this as a network-based issue that can impact availability, originating from NLDAP proces...
CVE-2021-22533
OpenText eDirectory 9.2.4.0000 is affected by CVE-2021-22533, described as a vulnerability that could allow insertion of sensitive information into log files. The issue targets the logging mechanism in eDirectory and is documented across multiple sources (including NVD/Red Hat pages). The CVE’s i...
CVE-2021-38133
OpenText eDirectory is affected by CVE-2021-38133 in versions prior to 9.2.6.0000. The vulnerability is described as an External Service Interaction attack affecting authentication, with CVSS v3.1 base scores indicating high/medium severity (C:H, UI:R, network attack). Root cause is not explicitl...
CVE-2021-38132
CVE-2021-38132 affects OpenText eDirectory prior to version 9.2.6.0000. The vulnerability is described as an External Service Interaction in eDirectory, with the NVD metric set to CVSSv3.1: 9.8 (CRITICAL) impact on confidentiality, integrity, and availability, attack vector NETWORK, no privileges...
CVE-2021-22503
CVE-2021-22503 corresponds to a vulnerability in OpenText eDirectory 9.2.3.0000 related to improper neutralization of input during web page generation. Multiple sources (NVD, Red Hat advisory) describe the issue as affecting eDirectory and provide CVSS metrics: NETWORK attack, LOW to MEDIUM impac...
CVE-2021-38131
CVE-2021-38131 is an XSS vulnerability reported in OpenText OpenText eDirectory 9.2.5.0000. The provided documents consistently identify a cross-site scripting issue in this version; no further technical specifics (e.g., vulnerable component, root cause) or exploit details are given. CVSS referen...
CVE-2018-17952
CVE-2018-17952 is a cross-site scripting vulnerability in Micro Focus NetIQ eDirectory versions prior to 9.1 SP2. The NVD entry lists a CVSS‑3 base score of 6.1 (MEDIUM) with network attack, low complexity, no privileges required, but user interaction required, and low impacts to confidentiality ...