Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2016-1607
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr prior to 2.0 Security Update 2 allow remote malicious users to hijack the authentication of administrators, as demonstrated by reconfiguring time settings via a vaconfig/time...
Novell Filr
1 EDB exploit
7.2
CVSSv3
CVE-2016-1593
Directory traversal vulnerability in the import users feature in Micro Focus Novell Service Desk prior to 7.2 allows remote authenticated administrators to upload and execute arbitrary JSP files via a .. (dot dot) in a filename within a multipart/form-data POST request to a LiveT...
Novell Service Desk
2 EDB exploits
7
CVSSv3
CVE-2009-3547
Multiple race conditions in fs/pipe.c in the Linux kernel prior to 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Linux Linux Kernel 2.6.32
Linux Linux Kernel
Novell Linux Desktop 9
Opensuse Opensuse 11.0
Opensuse Opensuse 11.2
Suse Suse Linux Enterprise Server 10
Suse Suse Linux Enterprise Desktop 10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 10
Vmware Esx 4.0
Vmware Vma 4.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
5 EDB exploits
1 Github repository
6.8
CVSSv3
CVE-2015-8816
The hub_activate function in drivers/usb/core/hub.c in the Linux kernel prior to 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate malicious users to cause a denial of service (invalid memory access and system crash) or possibly ha...
Novell Suse Linux Enterprise Server 12.0
Novell Suse Linux Enterprise Server 11
Novell Suse Linux Enterprise Debuginfo 11
Novell Suse Linux Enterprise Live Patching 12.0
Novell Suse Linux Enterprise Real Time Extension 11
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Module For Public Cloud 12
Novell Suse Linux Enterprise Workstation Extension 12.0
Novell Suse Linux Enterprise Software Development Kit 11.0
Novell Suse Linux Enterprise Real Time Extension 12
Novell Suse Linux Enterprise Software Development Kit 12.0
Linux Linux Kernel
Suse Linux Enterprise Server 12
Suse Linux Enterprise Live Patching 12
6.5
CVSSv3
CVE-2015-0783
The FileViewer class in Novell ZENworks Configuration Management (ZCM) allows remote authenticated users to read arbitrary files via the filename variable.
Novell Zenworks Configuration Management -
6.5
CVSSv3
CVE-2016-9168
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory prior to 9.0.2 could be used by remote attackers for clickjacking.
Novell Edirectory
6.5
CVSSv3
CVE-2016-1603
An information leak in the NetIQ IDM ServiceNow Driver prior to 1.0.0.1 could expose cryptographic attributes to logged-in users.
Novell Netiq Idm Servicenow Driver
6.5
CVSSv3
CVE-2016-1594
Micro Focus Novell Service Desk prior to 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action.
Novell Service Desk
1 EDB exploit
6.5
CVSSv3
CVE-2016-1595
LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in Micro Focus Novell Service Desk prior to 7.2 allows remote authenticated users to conduct Hibernate Query Language (HQL) injection attacks and obtain sensitive information via the entityName parameter.
Novell Service Desk
1 EDB exploit
6.5
CVSSv3
CVE-2016-1956
Mozilla Firefox prior to 45.0 on Linux, when an Intel video driver is used, allows remote malicious users to cause a denial of service (memory consumption or stack memory corruption) by triggering use of a WebGL shader.
Mozilla Firefox
Novell Suse Package Hub For Suse Linux Enterprise 12
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »