Vulnerabilities > Microfocus > Edirectory > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-12 | CVE-2021-38132 | Server-Side Request Forgery (SSRF) vulnerability in Microfocus Edirectory Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. | 9.8 |
| 2024-09-12 | CVE-2021-22533 | Information Exposure Through Log Files vulnerability in Microfocus Edirectory Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000. | 9.1 |
| 2018-03-02 | CVE-2017-9285 | Improper Authentication vulnerability in multiple products NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. | 9.8 |