Edirectory Netiq Edirectory

Do you want an email whenever new security vulnerabilities are reported in Netiq Edirectory?

By the Year

In 2024 there have been 0 vulnerabilities in Netiq Edirectory . Edirectory did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 0 0.00
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 6 7.87

It may take a day or so for new Edirectory vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Netiq Edirectory Security Vulnerabilities

Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.

CVE-2018-7686 7.5 - High - August 09, 2018

Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.

Information Disclosure

Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.

CVE-2018-7692 6.1 - Medium - August 09, 2018

Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.

Open Redirect

Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.

CVE-2018-12461 7.5 - High - July 10, 2018

Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.

Improper Certificate Validation

Addresses denial of service attack to eDirectory versions prior to 9.1.

CVE-2018-1346 7.5 - High - March 21, 2018

Addresses denial of service attack to eDirectory versions prior to 9.1.

The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code

CVE-2017-7429 8.8 - High - March 02, 2018

The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.

Improper Certificate Validation

NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used

CVE-2017-9285 9.8 - Critical - March 02, 2018

NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.

authentification

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Netiq Edirectory or by Netiq? Click the Watch button to subscribe.

Netiq
Vendor

subscribe