Critical: NeDi security update
Security Advisory: Critical
An update for NeDi is now available for NetEye.
NetEye Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
NeDi is integrated in NetEye’s monitoring solution as a network discovery tool.
A security researcher discovered a set of vulnerabilities in NeDi version 1.9C: https://n4nj0.github.io/advisories/nedi-multiple-vulnerabilities-i/
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Upgrade to version nedi-2.0.120_neteye2.0.0_p0-1.x86_64.
Please contact your NetEye consultant to get help to upgrade.
NetEye 4.x versions prior to and including 4.16.