CVE-2016-9168
published 2017-03-23CVE-2016-9168: A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking.
medium6.5CVSS 3.0
AVNACLPRNUIRSUCNIHAN
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| novell | edirectory | <= 9.0.1 | — |