Lucene search

PRIOn knowledge basePRION:CVE-2013-3268

HistoryApr 24, 2013 - 10:28 a.m.

Code injection

2013-04-2410:28:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.0%

JSON

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

CPENameOperatorVersion
imanagereq2.7 sp4
imanagereq2.7.4
imanagereq2.7 refresh6
imanagereq2.7.3 ftf2
imanagereq2.7.1
imanagereq2.7.3
imanagereq2.7.5
imanagereq2.7.2
imanagerle2.7
imanagereq2.7 sp5

Name	Operator	Version
imanager	eq	2.7 sp4
imanager	eq	2.7.4
imanager	eq	2.7 refresh6
imanager	eq	2.7.3 ftf2
imanager	eq	2.7.1
imanager	eq	2.7.3
imanager	eq	2.7.5
imanager	eq	2.7.2
imanager	le	2.7
imanager	eq	2.7 sp5

Rows per page:

1-10 of 171

References

www.novell.com/support/kb/doc.php?id=7010166

www.securityfocus.com/bid/59450

bugzilla.novell.com/show_bug.cgi?id=807429

exchange.xforce.ibmcloud.com/vulnerabilities/83761

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.0%

JSON

Related for PRION:CVE-2013-3268