Netwrix Directory Manager SQL Injection Vulnerability

Vulnerability

A SQL injection vulnerability has been identified in Netwrix Directory Manager (formerly Imanami GroupID) version 11.0.0.0 prior to 11.1.25162.02. This vulnerability allows authenticated users to manipulate SQL queries, potentially leading to unauthorized data access or modification.

Impact

Exploitation of this vulnerability could allow authenticated users to execute arbitrary SQL commands, potentially leading to unauthorized data access or manipulation.

Added: Aug 7, 2025, 5:22 PM

Updated: Aug 7, 2025, 5:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

5.2

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

5.2

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netwrix Directory Manager SQL Injection Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating