- Description
- Novell ZENworks for Desktops 4.0.1, ZENworks for Servers 3.0.2, and ZENworks 6.5 Desktop Management does not restrict access to Remote Diagnostics, which allows local users to bypass security policies by using Console One.
- Source
- cve@mitre.org
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:novell:zenworks:6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4C0F6C2-8583-4CE7-A95C-59EB4C948F63"
},
{
"criteria": "cpe:2.3:a:novell:zenworks_desktops:4.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D79D1539-0284-4861-852D-D07AD9A538F8"
},
{
"criteria": "cpe:2.3:a:novell:zenworks_servers:3.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7306E34-AFF4-40D8-BD03-F199FF5893C7"
}
],
"operator": "OR"
}
]
}
]