CVE-2015-0781

CVSS 9.8 - CRITICAL

Description

Directory traversal vulnerability in the doPost method of the Rtrlet class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to upload and execute arbitrary files via unspecified vectors.

Affected Products

Vendor	Product	Version
novell	zenworks_configuration_management	`-`

References

http://www.securityfocus.com/bid/74291

http://www.zerodayinitiative.com/advisories/ZDI-15...

https://www.novell.com/support/kb/doc.php?id=70164...

http://www.securityfocus.com/bid/74291

http://www.zerodayinitiative.com/advisories/ZDI-15...

https://www.novell.com/support/kb/doc.php?id=70164...

Weakness Types

CWE-22

CVE Information

CVE ID:: CVE-2015-0781
Published:: 2017-08-09
Modified:: 2026-05-13
CVSS Score:: 9.8
Severity:: CRITICAL
Vector:: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Vendors

novell

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL