Unrated severityNVD Advisory· Published May 26, 2010· Updated Apr 29, 2026

CVE-2009-4879

Description

The Identity Server in Novell Access Manager before 3.1 SP1 allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, which bypasses intended access restrictions.

Affected products

Novell/Access Manager2 versions
cpe:2.3:a:novell:access_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:novell:access_manager:*:*:*:*:*:*:*:*range: <=3.1
- cpe:2.3:a:novell:access_manager:3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.novell.com/documentation/novellaccessmanager31/accessmanager_readme/data/accessmanager_readme.htmlnvd
www.securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000