CVE-2011-3013

Novell Data Synchronizer - Cryptographic Issue

Title source: rule

Description

WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 supports weak SSL ciphers, which makes it easier for remote attackers to obtain access via a brute-force attack.

References (2)

[Vendor Advisory] http://www.novell.com/support/viewContent.do?externalId=7009056

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/69168

Scores

EPSS 0.0039

EPSS Percentile 59.9%

Classification

CWE

CWE-310

Status draft

Affected Products (8)

novell/data_synchronizer

novell/mobility_pack

Timeline

Published Aug 09, 2011

Tracked Since Feb 18, 2026