CVE-2012-2215

high

Description

Directory traversal vulnerability in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote attackers to read arbitrary files via an opcode 0x21 request.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/74189

http://www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=975

http://www.novell.com/support/viewContent.do?externalId=7010044

http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5127930.html

http://download.novell.com/Download?buildid=rs4B5jhWKf8~

Details

Source: Mitre, NVD

Published: 2012-04-09

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

Detections

Analytics