← back
CVE-2021-38133

Possible Improper authentication Vulnerability in OpenText eDirectory

CVSS 7.4 HIGHEPSS 0.3%CWE-521
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.4EPSS 0.3%KEV nãoPoC Patch
Lifecycle
Sep 12, 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. This impact all version before 9.2.6.0000.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Affected products
OpenText · eDirectory

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.netiq.com/documentation/edirectory-92/edirectory926_releasenotes/data/edirectory926_releasenotes.html