Filtered by vendor Microfocus
Subscriptions
Filtered by product Edirectory
Subscriptions
Total
10 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2018-7692 | 1 Microfocus | 1 Edirectory | 2023-11-07 | N/A |
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. | ||||
CVE-2018-7686 | 1 Microfocus | 1 Edirectory | 2023-11-07 | N/A |
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage. | ||||
CVE-2018-17952 | 1 Microfocus | 1 Edirectory | 2023-11-07 | N/A |
Cross site scripting vulnerability in eDirectory prior to 9.1 SP2 | ||||
CVE-2018-17950 | 1 Microfocus | 1 Edirectory | 2023-11-07 | N/A |
Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2 | ||||
CVE-2017-9285 | 2 Microfocus, Netiq | 2 Edirectory, Edirectory | 2023-11-07 | N/A |
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. | ||||
CVE-2017-7429 | 2 Microfocus, Netiq | 2 Edirectory, Edirectory | 2023-11-07 | N/A |
The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server. | ||||
CVE-2012-0432 | 1 Microfocus | 1 Edirectory | 2022-10-03 | N/A |
Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x before 8.8.7.2 allows remote attackers to have an unspecified impact via unknown vectors. | ||||
CVE-2012-0430 | 1 Microfocus | 1 Edirectory | 2021-04-13 | N/A |
Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors. | ||||
CVE-2012-0429 | 1 Microfocus | 1 Edirectory | 2021-04-13 | N/A |
dhost in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote authenticated users to cause a denial of service (daemon crash) via crafted characters in an HTTP request. | ||||
CVE-2012-0428 | 1 Microfocus | 1 Edirectory | 2021-04-13 | N/A |
Cross-site scripting (XSS) vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Page 1 of 1.