Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrofocusEdirectory

6 matches found

CVE
CVEadded 2018/03/02 8:29 p.m.35 views

CVE-2017-7429

The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.

8.8CVSS8.8AI score0.00205EPSS
CVE
CVEadded 2018/03/02 8:29 p.m.34 views

CVE-2017-9285

NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.

9.8CVSS7.4AI score0.0022EPSS
CVE
CVEadded 2018/12/12 2:29 p.m.34 views

CVE-2018-17952

Cross site scripting vulnerability in eDirectory prior to 9.1 SP2

6.1CVSS6AI score0.0024EPSS
CVE
CVEadded 2018/08/09 9:29 p.m.33 views

CVE-2018-7686

Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.

7.5CVSS7.4AI score0.00316EPSS
CVE
CVEadded 2018/08/09 9:29 p.m.31 views

CVE-2018-7692

Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.

6.1CVSS6.2AI score0.002EPSS
CVE
CVEadded 2018/12/12 2:29 p.m.29 views

CVE-2018-17950

Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2

7.5CVSS7.5AI score0.00198EPSS