Cross-Frame Scripting Vulnerability in Novell ZENworks Configuration Management
CVE-2013-6344

Currently unrated

Key Information:

Vendor: Novell
Status: Zenworks Configuration Management
Vendor: CVE Published:; 2 November 2013

Summary

The ZCC page in Novell ZENworks Configuration Management prior to version 11.2.4 is susceptible to cross-frame scripting attacks. This vulnerability allows an attacker to execute malicious scripts within the context of a user's browser by manipulating how the application presents its content. This could potentially lead to unauthorized actions being performed on behalf of users, breaching the security and integrity of the affected environment.

References

http://www.novell.com/support/kb/doc.php?id=7012027

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 2, 2013