Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell zenworks configuration management vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-6345
Novell ZENworks Configuration Management prior to 11.2.4 allows obtaining sensitive trace information.
Novell Zenworks Configuration Management
5
CVSSv2
CVE-2015-0784
Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote malicious users to obtain Session IDs of logged in users via a value of ShowLogins for the maintenance variable.
Novell Zenworks Configuration Management -
5
CVSSv2
CVE-2015-0785
com.novell.zenworks.inventory.rtr.actionclasses.wcreports in Novell ZENworks Configuration Management (ZCM) allows remote malicious users to read arbitrary folders via the dirname variable.
Novell Zenworks Configuration Management -
5
CVSSv2
CVE-2015-5970
The ChangePassword RPC method in Novell ZENworks Configuration Management (ZCM) 11.3 and 11.4 allows remote malicious users to conduct XPath injection attacks, and read arbitrary text files, via a malformed query involving a system entity reference.
Novell Zenworks Configuration Management 11.4.0
Novell Zenworks Configuration Management 11.3.2
Novell Zenworks Configuration Management 11.3.1
Novell Zenworks Configuration Management 11.3.0
Novell Zenworks Configuration Management 11.4.1
5
CVSSv2
CVE-2013-3706
Directory traversal vulnerability in the PreBoot service in Novell ZENworks Configuration Management (ZCM) 11.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in a preboot update pathname, aka ZDI-CAN-1595.
Novell Zenworks Configuration Management 11.2
5
CVSSv2
CVE-2013-1084
Directory traversal vulnerability in the GetFle method in the umaninv service in Novell ZENworks Configuration Management (ZCM) 11.2.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the Filename parameter in a GetFile action to zenworks-unmaninv/.
Novell Zenworks Configuration Management 11.2.3
5
CVSSv2
CVE-2012-2215
Directory traversal vulnerability in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote malicious users to read arbitrary files via an opcode 0x21 request.
Novell Zenworks Configuration Management 11.1
Novell Zenworks Configuration Management 11.1a
4.3
CVSSv2
CVE-2012-6344
Novell ZENworks Configuration Management prior to 11.2.4 allows XSS.
Novell Zenworks Configuration Management
4.3
CVSSv2
CVE-2013-6344
The ZCC page in Novell ZENworks Configuration Management (ZCM) prior to 11.2.4 allows malicious users to conduct cross-frame scripting attacks via unknown vectors.
Novell Zenworks Configuration Management 10.3.1
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 10.2
Novell Zenworks Configuration Management
Novell Zenworks Configuration Management 11.2
Novell Zenworks Configuration Management 11
Novell Zenworks Configuration Management 10.3.3
Novell Zenworks Configuration Management 10.3.2
4.3
CVSSv2
CVE-2013-1094
Cross-site scripting (XSS) vulnerability in a ZCC page in zenworks-core in Novell ZENworks Configuration Management (ZCM) 11.2 prior to 11.2.3a Monthly Update 1 allows remote malicious users to inject arbitrary web script or HTML via an invalid locale.
Novell Zenworks Configuration Management 11.2.1
Novell Zenworks Configuration Management 11.2.2
Novell Zenworks Configuration Management 11.2.3
Novell Zenworks Configuration Management 11.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »