Edirectory

edirectory

Vendor: Netiq • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-12461 1Netiq 1Edirectory Nov 21, 2024 Jul 10, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.
CVE-2018-1346 1Netiq 1Edirectory Nov 21, 2024 Mar 21, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Addresses denial of service attack to eDirectory versions prior to 9.1.
CVE-2017-9285 2Microfocus Netiq 2Edirectory Edirectory Nov 21, 2024 Mar 2, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
CVE-2017-7429 2Microfocus Netiq 2Edirectory Edirectory Nov 21, 2024 Mar 2, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.
CVE-2017-5186 2Netiq Novell 4Edirectory EdirectoryImanager+1 more May 13, 2026 Apr 27, 2017 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing...Show more Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing algorithm in a communications certificate.Show less