4.3
CVE-2011-2222
- EPSS 1.18%
- Veröffentlicht 09.08.2011 22:55:00
- Zuletzt bearbeitet 16.06.2026 23:30:57
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Session fixation vulnerability in WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote attackers to hijack web sessions via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Novell ≫ Data Synchronizer Version1.0.0
Novell ≫ Data Synchronizer Version1.1.0
Novell ≫ Data Synchronizer Version1.1.1
Novell ≫ Data Synchronizer Version1.1.2
Novell ≫ Mobility Pack Version1.0
Novell ≫ Mobility Pack Version1.1
Novell ≫ Mobility Pack Version1.1.1
Novell ≫ Mobility Pack Version1.1.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.18% | 0.637 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/45527
http://www.securityfocus.com/bid/49069
http://www.novell.com/support/viewContent.do?externalId=7009054