Lucene search
HistoryJun 17, 2013 - 11:38 a.m.
CVE-2013-1093
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
6.6
Confidence
High
EPSS
0.002
Percentile
60.4%
Open redirect vulnerability in the fwdToURL function in the ZCC login page in zcc-framework.jar in Novell ZENworks Configuration Management (ZCM) 11.2 before 11.2.3a Monthly Update 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the directToPage parameter.
Affected configurations
Node
novellzenworks_configuration_managementMatch11.2
ORnovellzenworks_configuration_managementMatch11.2.1
ORnovellzenworks_configuration_managementMatch11.2.2
ORnovellzenworks_configuration_managementMatch11.2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | zenworks_configuration_management | 11.2 | cpe:2.3:a:novell:zenworks_configuration_management:11.2:*:*:*:*:*:*:* |
| novell | zenworks_configuration_management | 11.2.1 | cpe:2.3:a:novell:zenworks_configuration_management:11.2.1:*:*:*:*:*:*:* |
| novell | zenworks_configuration_management | 11.2.2 | cpe:2.3:a:novell:zenworks_configuration_management:11.2.2:*:*:*:*:*:*:* |
| novell | zenworks_configuration_management | 11.2.3 | cpe:2.3:a:novell:zenworks_configuration_management:11.2.3:*:*:*:*:*:*:* |
Related
prion
prion
Open redirect
2013-06-17 11:38:00
cve
cve
CVE-2013-1093
2013-06-17 11:38:48
cvelist
cvelist
CVE-2013-1093
2013-06-17 10:00:00
nessus
nessus
PostgreSQL < 8.4.17 Multiple Vulnerabilities
2013-04-05 00:00:00
PostgreSQL < 9.0.13 Multiple Vulnerabilities
2013-04-05 00:00:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
6.6
Confidence
High
EPSS
0.002
Percentile
60.4%
Related for NVD:CVE-2013-1093