CVE-2013-3268

CWE-287Improper Authentication3 documents3 sources
Severity
10.0CRITICAL
EPSS
0.2%
top 62.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Imanager
Timeline
PublishedApr 24
Latest updateMay 17

Description

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDnovell/imanager2.7+7

🔴Vulnerability Details

2
GHSA
GHSA-3pf7-c5vh-fj2r: Novell iManager 22022-05-17
CVEList
CVE-2013-3268: Novell iManager 22013-04-24
CVE-2013-3268 (CRITICAL CVSS 10) | Novell iManager 2.7 before SP6 Patc | cvebase.io