Vulnerability Details CVE-2017-7432
Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://bugzilla.novell.com/show_bug.cgi?id=1027619
- https://dl.netiq.com/Download?buildid=24FxpmqdThE~
- https://dl.netiq.com/Download?buildid=wpS1UqIlx-o~
- https://www.netiq.com/support/kb/doc.php?id=7016795
- https://www.novell.com/support/kb/doc.php?id=7010166
- https://bugzilla.novell.com/show_bug.cgi?id=1027619
- https://dl.netiq.com/Download?buildid=24FxpmqdThE~
- https://dl.netiq.com/Download?buildid=wpS1UqIlx-o~
- https://www.netiq.com/support/kb/doc.php?id=7016795
- https://www.novell.com/support/kb/doc.php?id=7010166
Products affected by CVE-2017-7432
-
cpe:2.3:a:netiq:imanager:3.0
-
cpe:2.3:a:netiq:imanager:3.0.1
-
cpe:2.3:a:netiq:imanager:3.0.2
-
cpe:2.3:a:netiq:imanager:3.0.2.1
-
cpe:2.3:a:netiq:imanager:3.0.3
-
cpe:2.3:a:netiq:imanager:3.0.3.1
-
cpe:2.3:a:novell:imanager:2.7