VYPR
Medium severity6.5NVD Advisory· Published Apr 22, 2016· Updated Jun 17, 2026

CVE-2016-1594

CVE-2016-1594

Description

Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:novell:service_desk:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:novell:service_desk:*:*:*:*:*:*:*:*range: <=7.1
    • (no CPE)range: <7.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.