Code injection

2013-04-2410:28:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.1%

JSON

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

CPENameOperatorVersion
imanagereq2.7 sp4
imanagereq2.7.4
imanagereq2.7 refresh6
imanagereq2.7.3 ftf2
imanagereq2.7.1
imanagereq2.7.3
imanagereq2.7.5
imanagereq2.7.2
imanagerle2.7
imanagereq2.7 sp5

Name	Operator	Version
imanager	eq	2.7 sp4
imanager	eq	2.7.4
imanager	eq	2.7 refresh6
imanager	eq	2.7.3 ftf2
imanager	eq	2.7.1
imanager	eq	2.7.3
imanager	eq	2.7.5
imanager	eq	2.7.2
imanager	le	2.7
imanager	eq	2.7 sp5