Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell zenworks remote management vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1543
Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote malicious users to execute arbitr...
Novell Zenworks Remote Management
Novell Zenworks Server Management 6.5
Novell Zenworks 6.5
Novell Zenworks Desktops 3.2
Novell Zenworks Desktops 4.0
Novell Zenworks Desktops 4.0.1
Novell Zenworks Servers 3.2
2 EDB exploits
NA
CVE-2013-6347
Session fixation vulnerability in Novell ZENworks Configuration Management (ZCM) prior to 11.2.4 allows remote malicious users to hijack web sessions via unspecified vectors.
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 10.3.3
Novell Zenworks Configuration Management 10.3.2
Novell Zenworks Configuration Management 10.3.1
Novell Zenworks Configuration Management
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 11.2
Novell Zenworks Configuration Management 10.2
NA
CVE-2013-6346
Cross-site request forgery (CSRF) vulnerability in the ZCC page in Novell ZENworks Configuration Management (ZCM) prior to 11.2.4 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Novell Zenworks Configuration Management 11.2
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 10.3.3
Novell Zenworks Configuration Management 10.3.1
Novell Zenworks Configuration Management 10.2
Novell Zenworks Configuration Management
Novell Zenworks Configuration Management 10.3.2
Novell Zenworks Configuration Management 10.3
NA
CVE-2015-0779
Directory traversal vulnerability in UploadServlet in Novell ZENworks Configuration Management (ZCM) 10 and 11 prior to 11.3.2 allows remote malicious users to execute arbitrary code via a crafted directory name in the uid parameter, in conjunction with a WAR filename in the file...
Novell Zenworks Configuration Management 11.2.2
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 11.2.3
Novell Zenworks Configuration Management 11.2
Novell Zenworks Configuration Management 11.2.1
2 EDB exploits
NA
CVE-2013-1079
Directory traversal vulnerability in the ISCreateObject method in an ActiveX control in InstallShield\ISProxy.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.3 up to and including 11.2 allows remote malicious users to execute arbitrary local DLL files via ...
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 10.3.1
Novell Zenworks Configuration Management 10.3.2
Novell Zenworks Configuration Management 10.3.3
Novell Zenworks Configuration Management 11.1
Novell Zenworks Configuration Management 11.2
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 11.1a
NA
CVE-2012-2223
The xplat agent in Novell ZENworks Configuration Management (ZCM) 10.3.x prior to 10.3.4 and 11.x prior to 11.2 enables the HTTP TRACE method, which might make it easier for remote malicious users to conduct cross-site tracing (XST) attacks via unspecified vectors.
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 11.1
Novell Zenworks Configuration Management 10.3.2
Novell Zenworks Configuration Management 10.3.3
Novell Zenworks Configuration Management 11.1a
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 10.3.1
NA
CVE-2010-5324
Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 prior to 10.3 allows remote malicious users to execute arbitrary code via a zenworks-fileupload request with a crafted directory name in the ...
Novell Zenworks Configuration Management 10.0
Novell Zenworks Configuration Management 10.2
Novell Zenworks Configuration Management 10.1
1 EDB exploit
NA
CVE-2010-5323
Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 prior to 10.3 allows remote malicious users to execute arbitrary code via a crafted WAR pathname in the filename parameter in conjunction wit...
Novell Zenworks Configuration Management 10.0
Novell Zenworks Configuration Management 10.1
Novell Zenworks Configuration Management 10.2
1 EDB exploit
5.3
CVSSv3
CVE-2015-5970
The ChangePassword RPC method in Novell ZENworks Configuration Management (ZCM) 11.3 and 11.4 allows remote malicious users to conduct XPath injection attacks, and read arbitrary text files, via a malformed query involving a system entity reference.
Novell Zenworks Configuration Management 11.4.0
Novell Zenworks Configuration Management 11.3.2
Novell Zenworks Configuration Management 11.3.1
Novell Zenworks Configuration Management 11.3.0
Novell Zenworks Configuration Management 11.4.1
NA
CVE-2013-1094
Cross-site scripting (XSS) vulnerability in a ZCC page in zenworks-core in Novell ZENworks Configuration Management (ZCM) 11.2 prior to 11.2.3a Monthly Update 1 allows remote malicious users to inject arbitrary web script or HTML via an invalid locale.
Novell Zenworks Configuration Management 11.2.1
Novell Zenworks Configuration Management 11.2.2
Novell Zenworks Configuration Management 11.2.3
Novell Zenworks Configuration Management 11.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »