GCVE - cpe:2.3:a:netiq:edirectory:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:netiq:edirectory:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Netiq (`94dcefbc-5583-5ff9-9c13-e684dd17d831`)
Product	Edirectory (`aa3fc7cd-27e8-5a38-94da-45784f8e7fb5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-1346`	vulnerable	2026-06-03 14:38:31.029288	NetIQ eDirectory Denial of Service LOW (3.1) Addresses denial of service attack to eDirectory versions prior to 9.1. Published: 2018-03-21T14:00:00.000Z Updated: 2024-08-05T03:59:38.700Z Open on db.gcve.eu Reference links https://www.netiq.com/documentation/edirectory-91/edirectory91_releasenotes/data/edirectory91_releasenotes.html http://www.securityfocus.com/bid/103493	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-12461`	vulnerable	2026-06-03 14:38:04.382365	Certificate Revocation Check failure LOW (3.5) Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. Published: 2018-07-10T18:00:00.000Z Updated: 2024-09-16T17:18:10.522Z Open on db.gcve.eu Reference links https://www.netiq.com/support/kb/doc.php?id=7016794	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9285`	vulnerable	2026-06-03 14:37:41.298097	Login restrictions not applied when using ebaclient against NetIQ eDirectory EBA interface MEDIUM (5.4) NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. Published: 2018-03-02T20:00:00.000Z Updated: 2024-09-17T00:25:58.378Z Open on db.gcve.eu Reference links https://www.novell.com/support/kb/doc.php?id=7016794 https://bugzilla.suse.com/show_bug.cgi?id=1029077 https://www.netiq.com/documentation/edirectory-9/edirectory904_releasenotes/data/edirectory904_releasenotes.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-7429`	vulnerable	2026-06-03 14:37:31.944052	Fix for NetIQ shell code upload HIGH (8.8) The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server. Published: 2018-03-02T20:00:00.000Z Updated: 2024-09-16T23:35:59.724Z Open on db.gcve.eu Reference links https://bugzilla.suse.com/show_bug.cgi?id=1024957 https://www.novell.com/support/kb/doc.php?id=3426981 https://www.netiq.com/documentation/edir88/edir88810hf1_releasenotes/data/edir88810hf1_releasenotes.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.