CVE-2013-6347

Novell ZENworks Configuration Management < 11.2.4 - Session Fixation

Title source: llm
STIX 2.1

Description

Session fixation vulnerability in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows remote attackers to hijack web sessions via unspecified vectors.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7012027

Scores

EPSS 0.0080
EPSS Percentile 74.3%

Details

CWE
CWE-287
Status published
Products (8)
novell/zenworks_configuration_management 10.2
novell/zenworks_configuration_management 10.3
novell/zenworks_configuration_management 10.3.1
novell/zenworks_configuration_management 10.3.2
novell/zenworks_configuration_management 10.3.3
novell/zenworks_configuration_management 11 (2 CPE variants)
novell/zenworks_configuration_management 11.2
novell/zenworks_configuration_management < 11.2.3
Published Nov 02, 2013
Tracked Since Feb 18, 2026