Vulnerability Database

296,720

Total vulnerabilities in the database

CVE-2013-6344

The ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows attackers to conduct cross-frame scripting attacks via unknown vectors.

Published: Nov 2, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-6344
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
novell / zenworks_configuration_management	11-sp1	11-sp1.x
novell / zenworks_configuration_management	10.3.2	10.3.2.x
novell / zenworks_configuration_management	10.3.1	10.3.1.x
novell / zenworks_configuration_management	10.2	10.2.x
novell / zenworks_configuration_management	11	11.x
novell / zenworks_configuration_management	10.3	10.3.x
novell / zenworks_configuration_management	10.3.3	10.3.3.x
novell / zenworks_configuration_management	11.2	11.2.x
novell / zenworks_configuration_management	-	11.2.3.x

http://www.novell.com/support/kb/doc.php?id=7012027

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime