Skip to main content
CVE-2013-1080 CRITICAL POC THREAT Emergency

The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.9%.

Path Traversal Authentication Bypass Zenworks Configuration Management
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
72.9%
Threat
5.7
CVE-2013-1085 CRITICAL Act Now

Stack-based buffer overflow in the nim: protocol handler in Novell GroupWise Messenger 2.04 and earlier, and Novell Messenger 2.1.x and 2.2.x before 2.2.2, allows remote attackers to execute. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Epss exploitation probability 20.6% and no vendor patch available.

Buffer Overflow RCE Groupwise Messenger Messenger
NVD
CVSS 2.0
9.3
EPSS
20.6%
CVE-2013-1083 CRITICAL Act Now

Unspecified vulnerability in the login functionality in the Reporting Module in Novell Identity Manager (aka IDM) Roles Based Provisioning Module 4.0.2 before Field Patch C has unknown impact and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Identity Manager Roles Based Provisioning Module
NVD
CVSS 2.0
10.0
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy