HIGH🇵🇱 Wersja polska

CVE-2013-3268

CVSS 10.0v2.0pub. 2013-04-24upd. 2026-04-29

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Novell Imanager

    APP
    Novell
    2.72.7.02.7.12.7.22.7.32.7.42.7.5≤ 2.7
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2017-7432CRITICAL9.8ten sam produkt

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload...

CVE-2017-7431HIGH8.8ten sam produkt

Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF i...

CVE-2017-5186HIGH7.5ten sam produkt

Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8.x before 8.8 ...

CVE-2010-1929HIGH9.0ten sam produkt

Multiple stack-based buffer overflows in the jclient._Java_novell_jclient_JClient_defineClass@20 function in j...

CVE-2009-4486HIGH7.5ten sam produkt

Stack-based buffer overflow in the eDirectory plugin in Novell iManager before 2.7.3 allows remote attackers t...