Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
studio onsite vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2013-3712
SUSE Studio Onsite 1.3.x prior to 1.3.6 and SUSE Studio Extension for System z 1.3 uses "static" secret tokens, which has unspecified impact and vectors.
Suse Studio Onsite 1.3.5
Suse Studio Onsite 1.3.2
Suse Studio Onsite 1.3
Suse Studio Onsite 1.3.1
Suse Studio Extension For System Z 1.3
Suse Studio Onsite 1.3.4
Suse Studio Onsite 1.3.3
578
VMScore
CVE-2011-0467
A vulnerability in the listing of available software of SUSE Studio Onsite, SUSE Studio Onsite 1.1 Appliance allows authenticated users to execute arbitrary SQL statements via SQL injection. Affected releases are SUSE Studio Onsite: versions before 1.0.3-0.18.1, SUSE Studio Onsit...
Suse Studio Onsite Appliance
Suse Studio Onsite
383
VMScore
CVE-2011-4193
Cross-site scripting (XSS) vulnerability in the overlay files tab in SUSE Studio Onsite 1.2 prior to 1.2.1 and SUSE Studio Extension for System z 1.2 prior to 1.2.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted application, related to cloning.
Suse Studio Extension For System Z 1.2
Suse Studio Onsite 1.2
668
VMScore
CVE-2011-4192
kiwi prior to 4.85.1, as used in SUSE Studio Onsite 1.2 prior to 1.2.1 and SUSE Studio Extension for System z 1.2 prior to 1.2.1, allows malicious users to execute arbitrary commands as demonstrated by "double quotes in kiwi_oemtitle of .profile."
Suse Studio Extension For System Z 1.2
Suse Kiwi
Suse Studio Onsite 1.2
668
VMScore
CVE-2011-4195
kiwi prior to 4.98.05, as used in SUSE Studio Onsite 1.2 prior to 1.2.1 and SUSE Studio Extension for System z 1.2 prior to 1.2.1, allows malicious users to execute arbitrary commands via shell metacharacters in an image name.
Suse Studio Extension For System Z 1.2
Suse Studio Onsite 1.2
Suse Kiwi
668
VMScore
CVE-2011-3180
kiwi prior to 4.98.08, as used in SUSE Studio Onsite 1.2 prior to 1.2.1 and SUSE Studio Extension for System z 1.2 prior to 1.2.1, allows malicious users to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown.
Suse Studio Extension For System Z 1.2
Suse Studio Onsite 1.2
Suse Kiwi
383
VMScore
CVE-2011-2226
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to a pattern listing.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
383
VMScore
CVE-2011-2644
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to an RPM info display.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
668
VMScore
CVE-2011-2645
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename for a custom RPM.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
668
VMScore
CVE-2011-2646
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename in the list of testdrive modified files.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »