CVE-2018-12461
- EPSS 0.1%
- Veröffentlicht 10.07.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:45:15
Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.
CVE-2018-1346
- EPSS 0.33%
- Veröffentlicht 21.03.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:40
Addresses denial of service attack to eDirectory versions prior to 9.1.
CVE-2017-9285
- EPSS 0.21%
- Veröffentlicht 02.03.2018 20:29:01
- Zuletzt bearbeitet 21.11.2024 03:35:45
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
CVE-2017-7429
- EPSS 0.19%
- Veröffentlicht 02.03.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:31:52
The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.
CVE-2017-5186
- EPSS 0.47%
- Veröffentlicht 27.04.2017 14:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing algorithm in a communications ...