Known Vulnerabilities for products from Novell
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Novell".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-25252 | Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerabi... | 5.5 - MEDIUM | 2021-03-03 | 2021-09-08 |
| CVE-2020-8118 | An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when addi... | 5 - MEDIUM | 2020-02-04 | 2021-12-22 |
| CVE-2019-13730 | Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap cor... | 8.8 - HIGH | 2019-12-10 | 2023-11-07 |
| CVE-2019-11717 | A vulnerability exists where the caret ("^") character is improperly escaped constructing some URIs due to it being used as a... | 5.3 - MEDIUM | 2019-07-23 | 2023-02-28 |
| CVE-2019-11338 | libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to... | 8.8 - HIGH | 2019-04-19 | 2022-10-07 |
| CVE-2019-9811 | As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and th... | 8.3 - HIGH | 2019-07-23 | 2023-02-28 |
| CVE-2017-1000366 | glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing the... | 7.8 - HIGH | 2017-06-19 | 2020-10-15 |
| CVE-2017-14496 | Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet ... | 7.5 - HIGH | 2017-10-03 | 2023-11-07 |
| CVE-2017-14495 | Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attac... | 7.5 - HIGH | 2017-10-03 | 2023-11-07 |
| CVE-2017-14494 | dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors i... | 5.9 - MEDIUM | 2017-10-03 | 2023-11-07 |
| CVE-2017-14492 | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arb... | 9.8 - CRITICAL | 2017-10-03 | 2023-11-07 |
| CVE-2017-14491 | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arb... | 9.8 - CRITICAL | 2017-10-04 | 2023-11-07 |
| CVE-2017-13704 | In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a n... | 7.5 - HIGH | 2017-10-03 | 2023-11-07 |
| CVE-2017-9277 | The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA (Enhanced Background Authentication) kept open conn... | 7.5 - HIGH | 2018-03-02 | 2023-11-07 |
| CVE-2017-9267 | In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers... | 7.5 - HIGH | 2018-03-02 | 2023-11-07 |
| CVE-2017-8932 | A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x b... | 5.9 - MEDIUM | 2017-07-06 | 2023-11-07 |
| CVE-2017-7995 | Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device spa... | 3.8 - LOW | 2017-05-03 | 2017-05-15 |
| CVE-2017-7432 | Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload vulnerability. | 9.8 - CRITICAL | 2017-05-03 | 2023-11-07 |
| CVE-2017-7431 | Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF in object manage... | 8.8 - HIGH | 2017-05-03 | 2023-11-07 |
| CVE-2017-7430 | Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability i... | 6.1 - MEDIUM | 2017-05-03 | 2023-11-07 |
Known software with vulnerabilities from Novell
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Novell | Access Manager | - |
| Application | Novell | Access Manager Identity Server | - |
| Application | Novell | Bordermanager | - |
| Application | Novell | Client | - |
| Application | Novell | Client Firewall | - |
| Application | Novell | Client Login Extension Cle | - |
| Application | Novell | Data Synchronizer | 1.0.0 |
| Application | Novell | Edirectory | - |
| Application | Novell | Emframe | - |
| Application | Novell | Extend Director | - |
| Application | Novell | File Reporter | 1.0.2 |
| Application | Novell | Filr | 1.2 |
| Application | Novell | Groupwise | - |
| Application | Novell | Groupwise Enhancement Pack | - |
| Application | Novell | Groupwise Messenger | - |
| Application | Novell | Groupwise Webaccess | - |
| Application | Novell | Gtk For .net | 2.12.10 |
| Application | Novell | Http Server | - |
| Application | Novell | Ichain | - |
| Application | Novell | Identity Manager | - |