CVE-2007-3570

3 documents3 sources

Severity

7.5HIGH

EPSS

0.2%

top 57.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Access Manager

Timeline

PublishedJul 5

Latest updateMay 1

Description

The Linux Access Gateway in Novell Access Manager before 3.0 SP1 Release Candidate 1 (RC1) allows remote attackers to bypass unspecified security controls via Fullwidth/Halfwidth Unicode encoded data in a HTTP POST request.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDnovell/access_manager3

🔴Vulnerability Details

GHSA

GHSA-hvv3-w36m-h8q5: The Linux Access Gateway in Novell Access Manager before 3↗2022-05-01

▶

CVEList

CVE-2007-3570: The Linux Access Gateway in Novell Access Manager before 3↗2007-07-05

▶