Netiq Edirectory
5 CVEs affecting Netiq Edirectory. Latest disclosed: 2018-07-10. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-7429 | High | 8.8 | 2018-03-02 | The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated at… |
CVE-2017-5186 | High | 7.5 | 2017-04-27 | Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x be… |
CVE-2017-9285 | Medium | 5.4 | 2018-03-02 | NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. |
CVE-2018-12461 | Low | 3.5 | 2018-07-10 | Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. |
CVE-2018-1346 | Low | 3.1 | 2018-03-21 | Addresses denial of service attack to eDirectory versions prior to 9.1. |