Netiq » Edirectory : Security Vulnerabilities, CVEs, CVSS score >= 8
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
Max CVSS
9.8
EPSS Score
0.30%
Published
2018-03-02
Updated
2021-04-13
The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.
Max CVSS
8.8
EPSS Score
0.16%
Published
2018-03-02
Updated
2021-04-13
2 vulnerabilities found