Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-9169
A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise prior to 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote malicious user to execute JavaScript in the context of a valid user's browser session by getting the ...
Novell Groupwise 2014
7.5
CVSSv3
CVE-2016-9167
NDSD in Novell eDirectory prior to 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would otherwise be filtered by an ACL.
Novell Edirectory
7.5
CVSSv3
CVE-2016-5747
A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell eDirectory prior to 9.0.1 allows remote malicious users to bypass intended access restrictions by leveraging predictable cookies.
Novell Edirectory
5.5
CVSSv3
CVE-2014-9853
Memory leak in coders/rle.c in ImageMagick allows remote malicious users to cause a denial of service (memory consumption) via a crafted rle file.
Imagemagick Imagemagick -
Suse Linux Enterprise Server 11
Opensuse Project Suse Linux Enterprise Software Development Kit 11.0
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Server 12
Novell Leap 42.2
Suse Linux Enterprise Workstation Extension 12
Opensuse Opensuse 13.2
Suse Linux Enterprise Debuginfo 11
Suse Linux Enterprise Software Development Kit 12
Opensuse Leap 42.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 16.10
8.8
CVSSv3
CVE-2010-4314
Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client prior to 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.
Novell Iprint
4.3
CVSSv3
CVE-2015-7976
The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2
Ntp Ntp
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
7.5
CVSSv3
CVE-2017-5182
Remote Manager in Open Enterprise Server (OES) allows unauthenticated remote malicious users to read any arbitrary file, via a specially crafted URL, that allows complete directory traversal and total information disclosure. This vulnerability is present on all versions of OES fo...
Novell Open Enterprise Server 2.0
Novell Open Enterprise Server 2015
Novell Open Enterprise Server 11.0
9.1
CVSSv3
CVE-2016-5763
Vulnerability in Novell Open Enterprise Server (OES2015 SP1 before Scheduled Maintenance Update 10992, OES2015 before Scheduled Maintenance Update 10990, OES11 SP3 before Scheduled Maintenance Update 10991, OES11 SP2 before Scheduled Maintenance Update 10989) might allow authenti...
Novell Open Enterprise Server 11
Novell Open Enterprise Server 2015
5.4
CVSSv3
CVE-2016-1598
XSS in NetIQ IDM 4.5 Identity Applications prior to 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages.
Novell Identity Manager 4.5
Novell Identity Manager Identity Applications
9.8
CVSSv3
CVE-2016-4303
The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.
Iperf3 Project Iperf3
Novell Suse Package Hub For Suse Linux Enterprise 12
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »