CVE Tools

novell

Operating SystemsUScommercial

628

Cumulative CVEs

145

Monthly snapshots

#4

Peak rank

Top products

zenworks configuration management2 suse linux enterprise desktop1 suse linux enterprise debuginfo1

Latest CVEs

The 15 most recently published vulnerabilities affecting novell.

CVE-2024-12084Rsync: heap buffer overflow in rsync due to improper checksum length handling9.8Jan 15, 2025
CVE-2024-12088Rsync: --safe-links option bypass leads to path traversal6.5Jan 14, 2025
CVE-2020-8118An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application.5.0Feb 4, 2020
CVE-2015-6815The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of s...3.5Jan 31, 2020
CVE-2012-6345Novell ZENworks Configuration Management before 11.2.4 allows obtaining sensitive trace information.7.5Jan 25, 2020
CVE-2012-6344Novell ZENworks Configuration Management before 11.2.4 allows XSS.6.1Jan 25, 2020
CVE-2013-4357The eglibc package before 2.14 incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service.7.5Dec 31, 2019
CVE-2013-2016A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device. If the virtio device has zero/small sized config space, s...7.8Dec 30, 2019
CVE-2019-13730Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.8.8Dec 10, 2019
CVE-2019-9811As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This...8.3Jul 23, 2019
CVE-2019-11717A vulnerability exists where the caret ("^") character is improperly escaped constructing some URIs due to it being used as a separator, allowing for possible spoofing of origin attributes. This vu...5.3Jul 23, 2019
CVE-2019-11338libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array ac...8.8Apr 18, 2019
CVE-2017-9277existing connection is being used even though eDirectory LDAP server is upgraded to EBA4.2Mar 2, 2018
CVE-2017-9267eDirectory LDAP peer certificate validation issue6.5Mar 2, 2018
CVE-2017-14496Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of servic...7.5Oct 2, 2017