Novell Service_desk
4 CVEs affecting Novell Service_desk. Latest disclosed: 2016-04-22. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-1593 | High | 7.2 | 2016-04-22 | Directory traversal vulnerability in the import users feature in Micro Focus Novell Service Desk before 7.2 allows remote authenticated administrators to uploa… |
CVE-2016-1595 | Medium | 6.5 | 2016-04-22 | LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to conduct Hibe… |
CVE-2016-1594 | Medium | 6.5 | 2016-04-22 | Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated… |
CVE-2016-1596 | Medium | 5.4 | 2016-04-22 | Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus Novell Service Desk before 7.2 allow remote authenticated users to inject arbitrary web scri… |