Netwrix Directory Manager (formerly Imanami GroupID) through v.10.0.7784.0 has a hard-coded password.
Netwrix Directory Manager software contains a fixed, immutable password embedded directly in the application code. An attacker who learns or reproduces this password (e.g., through binary analysis or public disclosure) can use it to authenticate to the system. Because the password is identical in all installations and cannot be changed by an administrator, every instance of the product is vulnerable in the same way. The attack vector is network-based, with no requirement for any privileges or user interaction.
An attacker can gain full, unauthorized access to the directory management system, which may lead to disclosure of sensitive data, modification of configuration, and complete takeover of the identity and group management environment in the organization.
Patches available from the vendor should be applied according to the references. Detailed information is available in the official Netwrix security notice at: https://community.netwrix.com/t/adv-2025-013-hard-coded-password-in-netwrix-directory-manager-formerly-imanami-groupid-v10-and-earlier/13945
Netwrix Directory Manager (formerly Imanami GroupID) in version up to and including 10.0.7784.0
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HNetwrix Directory Manager
APPNetwrix≤ 10.0.7784.0
Related vulnerabilities
Netwrix Directory Manager — ujawnienie wrażliwych danych w wysyłanych żądaniach
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 inserts Sensitive Informati...
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 has Insufficiently Protecte...
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authenticati...
Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows SQL Injection. Authe...