CVE-2017-9285
CVSS 5.4 - MEDIUM
Description
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
Affected Products
4| Vendor | Product | Version |
|---|---|---|
| microfocus | edirectory |
All versions
|
| netiq | edirectory |
9.0
|
| netiq | edirectory |
9.0
|
| netiq | edirectory |
9.0
|
References
Weakness Types
CWE-284
CWE-287
CVE Information
- CVE ID:
CVE-2017-9285- Published:
- 2018-03-02
- Modified:
- 2024-11-21
- CVSS Score:
- 5.4
- Severity:
- MEDIUM
- Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Affected Vendors
netiq
microfocus
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL