5
CVE-2011-3014
- EPSS 0.37%
- Published 09.08.2011 22:55:01
- Last modified 11.04.2025 00:51:21
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 does not properly restrict caching of HTTPS responses, which makes it easier for remote attackers to obtain sensitive information by leveraging an unattended workstation.
Data is provided by the National Vulnerability Database (NVD)
Novell ≫ Data Synchronizer Version1.0.0
Novell ≫ Data Synchronizer Version1.1.0
Novell ≫ Data Synchronizer Version1.1.1
Novell ≫ Data Synchronizer Version1.1.2
Novell ≫ Mobility Pack Version1.0
Novell ≫ Mobility Pack Version1.1
Novell ≫ Mobility Pack Version1.1.1
Novell ≫ Mobility Pack Version1.1.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.37% | 0.583 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|