Cross-Site Scripting Vulnerabilities in Novell GroupWise
CVE-2014-0611

Currently unrated

Key Information:

Vendor: Novell
Status: Groupwise
Vendor: CVE Published:; 22 July 2015

What is CVE-2014-0611?

Novell GroupWise WebAccess is susceptible to multiple cross-site scripting (XSS) vulnerabilities, allowing remote attackers to inject arbitrary web scripts or HTML content. These vulnerabilities can be exploited through unspecified vectors and may lead to unauthorized access and data exposure within the GroupWise environment. Users are strongly advised to apply the latest patches and updates to mitigate the risks associated with these security flaws.

References

http://www.securitytracker.com/id/1032978

vdb-entryx_refsource_SECTRACK

http://www.novell.com/support/kb/doc.php?id=7016653

x_refsource_CONFIRM

https://bugzilla.novell.com/show_bug.cgi?id=909590

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 22, 2015
Vulnerability Reserved
Dec 28, 2013