Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NMicrofocus Edirectory
APPMicrofocus9.1≤ 9.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2021-38133HIGH7.4ten sam produkt
Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. This...
CVE-2021-22532HIGH7.6ten sam produkt
Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenText™ eDirect...
CVE-2018-7686HIGH7.5ten sam produkt
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.
CVE-2017-7429HIGH8.8ten sam produkt
The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload...
CVE-2012-0432HIGH10.0ten sam produkt
Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x before 8.8.7.2 allows...