Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Novell Subscribe
Filtered by product Sentinel Log Manager
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6534 1 Novell 1 Sentinel Log Manager 2017-10-04 4.3 MEDIUM N/A
Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies via a crafted text/x-gwt-rpc request to novelllogmanager/datastorageservice.rpc, and allows remote authenticated Report Administrators to create data retention policies via a search-results "Save Query As" "Save As Retention Policy" action.
CVE-2011-5028 1 Novell 1 Sentinel Log Manager 2017-08-28 4.0 MEDIUM N/A
Directory traversal vulnerability in novelllogmanager/FileDownload in Novell Sentinel Log Manager 1.2.0.1_938 and earlier, as used in Novell Sentinel before 7.0.1.0, allows remote authenticated users to read arbitrary files via a .. (dot dot) in the filename parameter.