Vulnerabilities > Microfocus > Edirectory > 9.0.3

DATE CVE VULNERABILITY TITLE RISK
2018-12-12 CVE-2018-17952 Cross-site Scripting vulnerability in Microfocus Edirectory
Cross site scripting vulnerability in eDirectory prior to 9.1 SP2
network
low complexity
microfocus CWE-79
6.1
6.1
2018-12-12 CVE-2018-17950 Incorrect Authorization vulnerability in Microfocus Edirectory
Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2
network
low complexity
microfocus CWE-863
7.5
7.5
2018-08-09 CVE-2018-7692 Open Redirect vulnerability in Microfocus Edirectory
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.
network
low complexity
microfocus CWE-601
6.1
6.1
2018-08-09 CVE-2018-7686 Information Exposure vulnerability in Microfocus Edirectory
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.
network
low complexity
microfocus CWE-200
7.5
7.5