Opensuse

Leap

1897 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2019-19344

  • EPSS 2.31%
  • Published 21.01.2020 18:15:12
  • Last modified 14.01.2025 19:29:55

There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x versions before 4.11.5, essentially due to a call to realloc() while other local variables still point at the ori...

2.4

CVE-2019-20386

  • EPSS 0.15%
  • Published 21.01.2020 06:15:11
  • Last modified 09.06.2025 16:15:30

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

9.8

CVE-2019-17361

  • EPSS 17.85%
  • Published 17.01.2020 02:15:11
  • Last modified 21.11.2024 04:32:10

In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host.

6.8

CVE-2020-7039

  • EPSS 1.02%
  • Published 16.01.2020 23:15:12
  • Last modified 21.11.2024 05:36:32

tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute ...

7.5

CVE-2020-7044

Exploit
  • EPSS 0.73%
  • Published 16.01.2020 04:15:11
  • Last modified 21.11.2024 05:36:32

In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors.

6.1

CVE-2020-7106

Exploit
  • EPSS 4.09%
  • Published 16.01.2020 04:15:11
  • Last modified 21.11.2024 05:36:38

Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string fr...

4.3

CVE-2020-2654

  • EPSS 0.23%
  • Published 15.01.2020 17:15:24
  • Last modified 21.11.2024 05:25:54

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access v...

4.3

CVE-2020-2659

  • EPSS 0.28%
  • Published 15.01.2020 17:15:24
  • Last modified 21.11.2024 05:25:55

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241 and 8u231; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated at...

6.8

CVE-2020-2601

  • EPSS 0.65%
  • Published 15.01.2020 17:15:20
  • Last modified 21.11.2024 05:25:41

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unau...

8.1

CVE-2020-2604

  • EPSS 1.36%
  • Published 15.01.2020 17:15:20
  • Last modified 21.11.2024 05:25:42

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows...