Known Vulnerabilities for Edirectory by Novell
Listed below are 10 of the newest known vulnerabilities associated with "Edirectory" by "Novell".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-25675 json | eDirectory contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to bypass administrator authe... | Not Provided | 2026-04-05 | 2026-04-06 |
| CVE-2017-9277 json | The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA (Enhanced Background Authentication) kept open conn... | 7.5 - HIGH | 2018-03-02 | 2023-11-07 |
| CVE-2017-9267 json | In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers... | 7.5 - HIGH | 2018-03-02 | 2023-11-07 |
| CVE-2017-5186 json | Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hot... | 7.5 - HIGH | 2017-04-27 | 2023-11-07 |
| CVE-2016-9168 json | A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote... | 6.5 - MEDIUM | 2017-03-23 | 2023-11-07 |
| CVE-2016-9167 json | NDSD in Novell eDirectory before 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which co... | 7.5 - HIGH | 2017-03-23 | 2023-11-07 |
| CVE-2016-5747 json | A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell eDirectory before 9.0.1 allows... | 7.5 - HIGH | 2017-03-23 | 2023-11-07 |
| CVE-2014-5213 json | nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows re... | 4 - MEDIUM | 2014-12-19 | 2015-11-13 |
| CVE-2014-5212 json | Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows re... | 4.3 - MEDIUM | 2014-12-19 | 2015-11-13 |
| CVE-2010-4327 json | Unspecified vulnerability in the NCP service in Novell eDirectory 8.8.5 before 8.8.5.6 and 8.8.6 before 8.8.6.2 allows remote... | 5 - MEDIUM | 2011-02-10 | 2018-10-10 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Novell | Edirectory | 85.30 | |||
| Application | Novell | Edirectory | 85.24 | |||
| Application | Novell | Edirectory | 85.20 | |||
| Application | Novell | Edirectory | 8.8.3 | |||
| Application | Novell | Edirectory | 8.8.1 | |||
| Application | Novell | Edirectory | 8.8 | |||
| Application | Novell | Edirectory | 8.8 | |||
| Application | Novell | Edirectory | 8.8 | |||
| Application | Novell | Edirectory | 8.7.3.8 | |||
| Application | Novell | Edirectory | 8.7.3.10 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 | |||
| Application | Novell | Edirectory | 8.7.3 |