CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Novell: >> Zenworks Configuration Management >> 11.3.1 Security Vulnerabilities

CVE-2015-5970

The ChangePassword RPC method in Novell ZENworks Configuration Management (ZCM) 11.3 and 11.4 allows remote attackers to conduct XPath injection attacks, and read arbitrary text files, via a malformed query involving a system entity reference.

CVSS Score

5.3

EPSS Score

0.005

Published

2016-02-18

Page 1

Vulnerabilities

Vulnerable Software

Novell: >> Zenworks Configuration Management >> 11.3.1 Security Vulnerabilities

Products

Pricing

Contact Us