Suse

Linux Enterprise Server

472 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-45082

Exploit
  • EPSS 0.04%
  • Published 19.02.2022 00:15:17
  • Last modified 21.11.2024 06:31:54

An issue was discovered in Cobbler before 3.3.1. In the templar.py file, the function check_for_invalid_imports can allow Cheetah code to import Python modules via the "#from MODULE import" substring. (Only lines beginning with #import are blocked.)

7.8

CVE-2021-4034

Warning Exploit
  • EPSS 86.52%
  • Published 28.01.2022 20:15:12
  • Last modified 03.04.2025 18:53:12

A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pk...

7.5

CVE-2002-20001

Exploit
  • EPSS 14.68%
  • Published 11.11.2021 19:15:07
  • Last modified 22.08.2025 10:33:16

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ate...

7.1

CVE-2021-32000

Exploit
  • EPSS 0.02%
  • Published 28.07.2021 10:15:07
  • Last modified 21.11.2024 06:06:41

A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allows local attackers to delete arbi...

7.1

CVE-2018-10195

  • EPSS 0.14%
  • Published 02.06.2021 14:15:07
  • Last modified 21.11.2024 03:40:59

lrzsz before version 0.12.21~rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a size_t to wrap around.

9.3

CVE-2020-8025

Exploit
  • EPSS 0.1%
  • Published 07.08.2020 10:15:11
  • Last modified 21.11.2024 05:38:14

A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Tumbleweed sets th...

2.5

CVE-2020-8013

  • EPSS 0.06%
  • Published 02.03.2020 17:15:19
  • Last modified 21.11.2024 05:38:13

A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneo...

9.8

CVE-2019-18902

  • EPSS 2.82%
  • Published 02.03.2020 17:15:18
  • Last modified 21.11.2024 04:33:48

A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Se...

9.8

CVE-2019-18903

  • EPSS 2.82%
  • Published 02.03.2020 17:15:18
  • Last modified 21.11.2024 04:33:48

A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Se...

7.8

CVE-2019-18897

  • EPSS 0.1%
  • Published 02.03.2020 16:15:11
  • Last modified 21.11.2024 04:33:48

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Factory allows local attackers to escalate privileges from user salt to root. This issue aff...