Information Disclosure Vulnerability in Novell Data Synchronizer Mobility Pack
CVE-2011-3014
Currently unrated
Summary
The Novell Data Synchronizer Mobility Pack version 1.2 and earlier versions prior to 1.1.2 build 428 compromise secure data transmission by failing to adequately restrict caching of HTTPS responses. This flaw enables remote attackers to exploit unattended workstations, potentially gaining unauthorized access to sensitive information. Organizations using these versions should take immediate action to mitigate risks associated with this vulnerability.
References
Timeline
Vulnerability published
Vulnerability Reserved