Token Refresh Vulnerability in Novell iManager 2.7 before SP6 Patch 1

Token Refresh Vulnerability in Novell iManager 2.7 before SP6 Patch 1

CVE-2013-3268 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.

Learn more about our Web Application Penetration Testing UK.