7.5
CVE-2017-9277
- EPSS 0.38%
- Published 02.03.2018 20:29:00
- Last modified 21.11.2024 03:35:44
- Source security@opentext.com
- Teams watchlist Login
- Open Login
The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA (Enhanced Background Authentication) kept open connections without EBA.
Data is provided by the National Vulnerability Database (NVD)
Novell ≫ Edirectory Version <= 9.0
Novell ≫ Edirectory Version9.0 Updatesp1
Novell ≫ Edirectory Version9.0 Updatesp2
Novell ≫ Edirectory Version9.0 Updatesp3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.38% | 0.562 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
| security@opentext.com | 4.2 | 1.6 | 2.5 |
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
|