CVE-2021-22521

< 2020

A privileged escalation vulnerability has been identified in Micro Focus ZENworks Configuration Management, affecting version 2020

6.7MEDIUM

CVE-2012-6345

< 11.2.4

Novell ZENworks Configuration Management before 11.2.4 allows obtaining sensitive trace information.

7.5HIGH

CVE-2012-6344

< 11.2.4

Novell ZENworks Configuration Management before 11.2.4 allows XSS.

6.1MEDIUM

CVE-2015-0786

all versions

Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management

9.8CRITICAL

CVE-2015-0785

all versions

com.novell.zenworks.inventory.rtr.actionclasses.wcreports in Novell ZENworks Configuration Management (ZCM) allows remote attacker

7.5HIGH

CVE-2015-0784

all versions

Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to obtain Session IDs of logged in users vi

7.5HIGH

CVE-2015-0783

all versions

The FileViewer class in Novell ZENworks Configuration Management (ZCM) allows remote authenticated users to read arbitrary files v

6.5MEDIUM

CVE-2015-0782

all versions

SQL injection vulnerability in the ScheduleQuery method of the schedule class in Novell ZENworks Configuration Management (ZCM) al

9.8CRITICAL

CVE-2015-0781

all versions

Directory traversal vulnerability in the doPost method of the Rtrlet class in Novell ZENworks Configuration Management (ZCM) allow

9.8CRITICAL

CVE-2015-0780

all versions

SQL injection vulnerability in the GetReRequestData method of the GetStoredResult class in Novell ZENworks Configuration Managemen

9.8CRITICAL

CVE-2015-5970

all versions

The ChangePassword RPC method in Novell ZENworks Configuration Management (ZCM) 11.3 and 11.4 allows remote attackers to conduct X

5.3MEDIUM

CVE-2015-0779

all versions

Directory traversal vulnerability in UploadServlet in Novell ZENworks Configuration Management (ZCM) 10 and 11 before 11.3.2 allow

CVE-2010-5324

all versions

Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management

CVE-2010-5323

all versions

Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management

CVE-2014-7169

all versions

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environme

9.8CRITICAL

CVE-2014-6271

all versions

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows re

9.8CRITICAL

CVE-2013-3706

all versions

Directory traversal vulnerability in the PreBoot service in Novell ZENworks Configuration Management (ZCM) 11.2 allows remote atta

CVE-2013-6347

<= 11.2.3

Session fixation vulnerability in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows remote attackers to hijack w

CVE-2013-6346

<= 11.2.3

Cross-site request forgery (CSRF) vulnerability in the ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 al

CVE-2013-6345

<= 11.2.3

Unspecified vulnerability in the ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 has unknown impact and a

CVE-2013-6344

<= 11.2.3

The ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows attackers to conduct cross-frame scripting att

CVE-2013-1084

all versions

Directory traversal vulnerability in the GetFle method in the umaninv service in Novell ZENworks Configuration Management (ZCM) 11

CVE-2013-1097

all versions

Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in Novell ZENworks Configuration Management (ZCM) 11.2 before 1

CVE-2013-1095

all versions

Cross-site scripting (XSS) vulnerability in a ZCC page in njwc.jar in Novell ZENworks Configuration Management (ZCM) 11.2 before 1

CVE-2013-1094

all versions

Cross-site scripting (XSS) vulnerability in a ZCC page in zenworks-core in Novell ZENworks Configuration Management (ZCM) 11.2 bef

CVE-2013-1093

all versions

Open redirect vulnerability in the fwdToURL function in the ZCC login page in zcc-framework.jar in Novell ZENworks Configuration M

CVE-2013-1080

all versions

The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authenticat

CVE-2013-1079

all versions

Directory traversal vulnerability in the ISCreateObject method in an ActiveX control in InstallShield\ISProxy.dll in AdminStudio i

CVE-2011-3174

all versions

Buffer overflow in the DoFindReplace function in the ISGrid.Grid2.1 ActiveX control in InstallShield/ISGrid2.dll in AdminStudio in

CVE-2011-2658

all versions

The ISList.ISAvi ActiveX control in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 provides

CVE-2011-2657

all versions

Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll

CVE-2012-2223

all versions

The xplat agent in Novell ZENworks Configuration Management (ZCM) 10.3.x before 10.3.4 and 11.x before 11.2 enables the HTTP TRACE

CVE-2012-2215

all versions

Directory traversal vulnerability in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows r

CVE-2011-3176

all versions

Stack-based buffer overflow in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote

CVE-2011-3175

all versions

Stack-based buffer overflow in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote

CVE-2010-4229

all versions

Directory traversal vulnerability in an unspecified servlet in the Inventory component in ZENworks Asset Management (ZAM) in Novel