本ページは netiq edirectory に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2018-12461 | Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. | [email protected] | 3.5 | 0.49% | 2018-07-10 | 2026-06-16 |
| CVE-2018-1346 | Addresses denial of service attack to eDirectory versions prior to 9.1. | [email protected] | 3.1 | 1.26% | 2018-03-21 | 2026-06-16 |
| CVE-2017-9285 | NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. | [email protected] | 5.4 | 1.21% | 2018-03-02 | 2026-06-16 |
| CVE-2017-7429 | The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server. | [email protected] | 8.8 | 0.86% | 2018-03-02 | 2026-06-16 |
| CVE-2017-5186 | Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing algorithm in a communications certificate. | [email protected] | 7.5 | 0.64% | 2017-04-27 | 2026-06-16 |