CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2654

The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote attackers to execute arbitrary code by making RPC calls that leverage incorrect privileges associated with a partially initialized session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.043

EPSS Ranking 88.4%

CVSS Severity

CVSS v2 Score 9.3

References

http://download.novell.com/Download?buildid=NSONlV5PqMo~
http://secunia.com/advisories/45845
http://www.securityfocus.com/bid/49432
http://www.securitytracker.com/id?1026006
http://zerodayinitiative.com/advisories/ZDI-11-278/
http://download.novell.com/Download?buildid=NSONlV5PqMo~
http://secunia.com/advisories/45845
http://www.securityfocus.com/bid/49432
http://www.securitytracker.com/id?1026006
http://zerodayinitiative.com/advisories/ZDI-11-278/

Products affected by CVE-2011-2654

Novell » Cloud Manager » Version: Any

cpe:2.3:a:novell:cloud_manager:*
Novell » Cloud Manager » Version: 1.1.2

cpe:2.3:a:novell:cloud_manager:1.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2654

Products

Pricing

Contact Us