The SuSEfirewall2 package prior to 3.6.312-2.13.1 in SUSE Linux Enterprise (SLE) Desktop 12 SP2, Server 12 SP2, and Server for Raspberry Pi 12 SP2; prior to 3.6.312.333-3.10.1 in SLE Desktop 12 SP3 and Server 12 SP3; prior to 3.6_SVNr208-2.18.3.1 in SLE Server 11 SP4; prior to 3.6.312-5.9.1 in openSUSE Leap 42.2; and prior to 3.6.312.333-7.1 in openSUSE Leap 42.3 might allow remote malicious users to bypass intended access restrictions on the portmap service by leveraging a missing source net restriction for _rpc_ services.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse susefirewall2 - |