Opensuse

Leap

1897 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-18218

Exploit
  • EPSS 0.23%
  • Veröffentlicht 21.10.2019 05:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:51

cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).

9

CVE-2019-14287

Exploit
  • EPSS 86.13%
  • Veröffentlicht 17.10.2019 18:15:12
  • Zuletzt bearbeitet 21.11.2024 04:26:22

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !r...

4.3

CVE-2019-2992

  • EPSS 0.82%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...

4.7

CVE-2019-2999

  • EPSS 2.66%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:57

Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via mul...

6.5

CVE-2019-2974

  • EPSS 0.22%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:54

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.45 and prior, 5.7.27 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows low privileged attacke...

5.8

CVE-2019-2975

  • EPSS 0.34%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:54

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affected are Java SE: 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...

4.3

CVE-2019-2978

  • EPSS 0.27%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:54

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauth...

4.3

CVE-2019-2981

  • EPSS 0.3%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:55

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthentica...

4.3

CVE-2019-2983

  • EPSS 0.31%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:55

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows una...

4.3

CVE-2019-2988

  • EPSS 0.35%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...