CVE-2017-9278

Summary

The NetIQ Identity Manager Oracle EBS driver before 4.0.2.0 sent EBS logs containing the driver authentication password, potentially disclosing this to attackers able to read the EBS tables.

Affected Software

VendorProductVersion RangeStatus
NetIQIdentity Manager Oracle EBS driverunspecified < 4.0.2.0affected

Weaknesses

  • password disclosure via logging
  • CWE-532: CWE-532

ADP Enrichment

CVE Program Container

Additional References

References