Rapid7 researcher Juan Vazquez recently uncovered a zero-day security flaw in Novell ZENworks Asset Management 7.5.5. This vulnerability (CVE-2012-4933) gives access to any files with system privileges and could also allow an attacker to grab configuration parameters. US CERT recommends that users implement firewall rules that will restrict access to the web interface by unauthorised users. The vulnerability currently remains unpatched and the vulnerability is not being fixed by the latest version of the software.
Source: https://thehackernews.com/2012/10/zero-day-exploit-released-for.html