Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

suse linux enterprise desktop vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-32182
A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 postfix, SUSE openSUSE Leap 15.5 postfix.This issue affects SUSE Linux Enter...
Opensuse Leap 15.5Suse Suse Linux Enterprise Desktop 15Suse Linux Enterprise High Performance Computing 15.0
NA
CVE-2015-1931
IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores plaintext information in memory dumps, which allows local users to obtain sensitive...
Ibm Java SdkSuse Linux Enterprise Server 11Suse Linux Enterprise Software Development Kit 11Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 7.0Redhat Satellite 5.7Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Eus 6.7Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Satellite 5.6Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Eus 7.5Redhat Enterprise Linux Eus 7.4Redhat Enterprise Linux Eus 7.3Redhat Enterprise Linux Eus 7.2Redhat Enterprise Linux Eus 7.1Redhat Enterprise Linux Workstation 6.0
7.2
CVSSv2
CVE-2022-27239
In cifs-utils up to and including 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
Samba Cifs-utilsDebian Debian Linux 9.0Debian Debian Linux 10.0Debian Debian Linux 11.0Suse Linux Enterprise Server 11Suse Openstack Cloud 8.0Suse Linux Enterprise Server 15Suse Linux Enterprise Software Development Kit 12Suse Openstack Cloud Crowbar 8.0Suse Openstack Cloud Crowbar 9.0Suse Openstack Cloud 9.0Suse Linux Enterprise Server 12Suse Manager Server 4.1Suse Linux Enterprise Desktop 15Suse Enterprise Storage 7.0Suse Caas Platform 4.0Suse Enterprise Storage 6.0Suse Manager Proxy 4.1Suse Linux Enterprise High Performance Computing 12.0Suse Linux Enterprise High Performance Computing 15.0Suse Linux Enterprise Real Time 15.0Suse Linux Enterprise Point Of Service 11.0
7.2
CVSSv2
CVE-2021-4034
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle ...
Polkit Project PolkitRedhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux For Scientific Computing 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux For Power Little Endian 7.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux For Power Big Endian 7.0Redhat Enterprise Linux For Ibm Z Systems 7.0Redhat Enterprise Linux Server Aus 7.3Redhat Enterprise Linux Server Aus 7.4Redhat Enterprise Linux Server Tus 7.6Redhat Enterprise Linux Server Aus 7.6Redhat Enterprise Linux 8.0Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Tus 7.7Redhat Enterprise Linux Eus 8.2Redhat Enterprise Linux Server Tus 8.2Redhat Enterprise Linux Server Aus 8.2Redhat Enterprise Linux Server Tus 8.4Redhat Enterprise Linux Server Aus 8.4Redhat Enterprise Linux Server Update Services For Sap Solutions 8.2
3.6
CVSSv2
CVE-2018-10195
lrzsz before version 0.12.21~rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a size_t to wrap around.
Lrzsz Project LrzszSuse Linux Enterprise Debuginfo 11Suse Linux Enterprise Desktop 12Suse Linux Enterprise Server 11Suse Linux Enterprise Server 12Debian Debian Linux 9.0
7.2
CVSSv2
CVE-2020-8018
A Incorrect Default Permissions vulnerability in the SLES15-SP1-CHOST-BYOS and SLES15-SP1-CAP-Deployment-BYOS images of SUSE Linux Enterprise Server 15 SP1 allows local attackers with the UID 1000 to escalate to root due to a /etc directory owned by the user This issue affects: S...
Suse Linux Enterprise Desktop 15
4.4
CVSSv2
CVE-2020-8016
A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; openSUSE Le...
Opensuse Texlive-filesystemOpensuse Texlive-filesystem -
3.3
CVSSv2
CVE-2020-8017
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; op...
Opensuse Texlive-filesystemOpensuse Texlive-filesystem -Opensuse Leap 15.1
6.8
CVSSv2
CVE-2020-6422
Use after free in WebGL in Google Chrome before 80.0.3987.149 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google ChromeFedoraproject Fedora 30Fedoraproject Fedora 31Fedoraproject Fedora 32Debian Debian Linux 9.0Debian Debian Linux 10.0Suse Suse Linux Enterprise Server 12Opensuse Backports Sle 15.0Suse Suse Linux Enterprise Desktop 12
6.8
CVSSv2
CVE-2020-6424
Use after free in media in Google Chrome before 80.0.3987.149 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google ChromeDebian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 30Fedoraproject Fedora 31Fedoraproject Fedora 32Suse Suse Linux Enterprise Server 12Opensuse Backports Sle 15.0Suse Suse Linux Enterprise Desktop 12
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook