PT-2017-17733 · Novell+1 · Novell Imanager+1

Published

2017-05-03

Updated

2017-05-15

CVE-2017-7431

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Novell iManager versions 2.7.x before 2.7 SP7 Patch 10 HF1 NetIQ iManager versions 3.x before 3.0.3.1

Description The issue concerns persistent CSRF in object management.

Recommendations For Novell iManager versions 2.7.x before 2.7 SP7 Patch 10 HF1, update to 2.7 SP7 Patch 10 HF1 or later. For NetIQ iManager versions 3.x before 3.0.3.1, update to 3.0.3.1 or later.

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2017-7431

Affected Products

Netiq Imanager

Novell Imanager

PT-2017-17733 · Novell+1 · Novell Imanager+1

CVE-2017-7431

Weakness Enumeration

Related Identifiers

Affected Products

References · 8