CVE-2013-3268 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-3268

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

Published: Apr 24, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-3268
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
novell / imanager	2.7-sp4	2.7-sp4.x
novell / imanager	2.7.4	2.7.4.x
novell / imanager	2.7-refresh6	2.7-refresh6.x
novell / imanager	2.7.3-ftf2	2.7.3-ftf2.x
novell / imanager	2.7.1	2.7.1.x
novell / imanager	2.7.3	2.7.3.x
novell / imanager	2.7.5	2.7.5.x
novell / imanager	2.7.2	2.7.2.x
novell / imanager	-	2.7.x
novell / imanager	2.7-sp5	2.7-sp5.x
novell / imanager	2.7.0	2.7.0.x
novell / imanager	2.7-sp4_patch2	2.7-sp4_patch2.x
novell / imanager	2.7.3-ftf4	2.7.3-ftf4.x
novell / imanager	2.7-sp4_patch1	2.7-sp4_patch1.x
novell / imanager	2.7.3-sp3	2.7.3-sp3.x
novell / imanager	2.7-sp4_patch4	2.7-sp4_patch4.x
novell / imanager	2.7-sp4_patch3	2.7-sp4_patch3.x