Known Vulnerabilities for Edirectory by Microfocus
Listed below are 10 of the newest known vulnerabilities associated with "Edirectory" by "Microfocus".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-17952 | Cross site scripting vulnerability in eDirectory prior to 9.1 SP2 | 6.1 - MEDIUM | 2018-12-12 | 2023-11-07 |
| CVE-2018-17950 | Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2 | 7.5 - HIGH | 2018-12-12 | 2023-11-07 |
| CVE-2018-7692 | Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. | 6.1 - MEDIUM | 2018-08-09 | 2023-11-07 |
| CVE-2018-7686 | Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage. | 7.5 - HIGH | 2018-08-09 | 2023-11-07 |
| CVE-2017-9285 | NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to ... | 9.8 - CRITICAL | 2018-03-02 | 2023-11-07 |
| CVE-2017-7429 | The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which... | 8.8 - HIGH | 2018-03-02 | 2023-11-07 |
| CVE-2012-0432 | Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x before 8.8.7.2 allows remote attacke... | 10 - HIGH | 2012-12-25 | 2021-04-13 |
| CVE-2012-0430 | Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote atta... | 6.4 - MEDIUM | 2012-12-25 | 2021-04-13 |
| CVE-2012-0429 | dhost in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote authenticated users to c... | 4 - MEDIUM | 2012-12-25 | 2021-04-13 |
| CVE-2012-0428 | Cross-site scripting (XSS) vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 allows remote ... | 4.3 - MEDIUM | 2012-12-25 | 2021-04-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microfocus | Edirectory | 9.1.2 | All | All | All |
| Application | Microfocus | Edirectory | 9.1.1 | All | All | All |
| Application | Microfocus | Edirectory | 9.1 | sp2 | All | All |
| Application | Microfocus | Edirectory | 9.1 | sp1 | All | All |
| Application | Microfocus | Edirectory | 9.1 | - | All | All |
| Application | Microfocus | Edirectory | 9.0.4 | All | All | All |
| Application | Microfocus | Edirectory | 9.0.3 | p1 | All | All |
| Application | Microfocus | Edirectory | 9.0.3 | All | All | All |
| Application | Microfocus | Edirectory | 9.0.2 | p2 | All | All |
| Application | Microfocus | Edirectory | 9.0.2 | All | All | All |
| Application | Microfocus | Edirectory | 9.0.2 | p1 | All | All |
| Application | Microfocus | Edirectory | 9.0 | All | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p9 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | All | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p1 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p10 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p11 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p2 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p3 | All | All |
| Application | Microfocus | Edirectory | 8.8.8 | p4 | All | All |