Vulnerability Details : CVE-2013-3268
Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.
Vulnerability category: BypassGain privilege
Exploit prediction scoring system (EPSS) score for CVE-2013-3268
Probability of exploitation activity in the next 30 days: 0.37%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 69 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-3268
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2013-3268
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-3268
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/83761
Novell iManager unspecified CVE-2013-3268 Vulnerability Report
-
http://www.novell.com/support/kb/doc.php?id=7010166
History of Issues Resolved for Novell iManager 2.7
-
http://www.securityfocus.com/bid/59450
Novell iManager CVE-2013-3268 Unspecified Security Vulnerability
-
https://bugzilla.novell.com/show_bug.cgi?id=807429
Access Denied
Products affected by CVE-2013-3268
- cpe:2.3:a:novell:imanager:*:sp6:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.3:ftf2:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.3:ftf4:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.3:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp4_patch1:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp5:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:refresh6:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp4_patch3:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp4_patch4:*:*:*:*:*:*
- cpe:2.3:a:novell:imanager:2.7:sp4_patch2:*:*:*:*:*:*