Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
suse linux enterprise server 15 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2019-3688
The /usr/sbin/pinger binary packaged with squid in SUSE Linux Enterprise Server 15 before and including version 4.8-5.8.1 and in SUSE Linux Enterprise Server 12 before and including 3.5.21-26.17.1 had squid:root, 0750 permissions. This allowed an attacker that compromissed the sq...
Suse Suse Linux Enterprise Server 12
Suse Suse Linux Enterprise Server 15
9.3
CVSSv3
CVE-2020-8025
A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Tumbleweed sets the permissions for some of the ...
Suse Linux Enterprise High Performance Computing 15
Suse Linux Enterprise Server 15
Suse Linux Enterprise Software Development Kit 12
7.1
CVSSv3
CVE-2021-32000
A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allows local malicious users to delete arbitrary files. This issue ...
Suse Opensuse Factory -
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
2.5
CVSSv3
CVE-2020-8013
A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The sy...
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
Suse Linux Enterprise Server 11
Opensuse Leap 15.1
7.8
CVSSv3
CVE-2019-18897
A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Factory allows local malicious users to escalate privileges from user salt to root. This issue affects: SUSE Linux Enterpr...
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
Opensuse Leap 15.1
9.8
CVSSv3
CVE-2019-18902
A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote malicious users to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions ...
Opensuse Leap 15.1
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
5.5
CVSSv3
CVE-2019-18901
A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb packaging of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15 allows local malicious users to change the permissions of arbitrary files to 0640. This issue affects: S...
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
Opensuse Leap 15.1
9.8
CVSSv3
CVE-2019-18903
A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote malicious users to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions ...
Opensuse Leap 15.1
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
5.5
CVSSv3
CVE-2023-23005
In the Linux kernel prior to 6.2, mm/memory-tiers.c misinterprets the alloc_memory_type return value (expects it to be NULL in the error case, whereas it is actually an error pointer). NOTE: this is disputed by third parties because there are no realistic cases in which a user ca...
Linux Linux Kernel
Suse Linux Enterprise Server 15
7.8
CVSSv3
CVE-2021-45082
An issue exists in Cobbler prior to 3.3.1. In the templar.py file, the function check_for_invalid_imports can allow Cheetah code to import Python modules via the "#from MODULE import" substring. (Only lines beginning with #import are blocked.)
Cobbler Project Cobbler
Suse Linux Enterprise Server 11
Opensuse Factory -
Suse Linux Enterprise Server 12
Suse Linux Enterprise Server 15
Opensuse Backports Sle-15
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »