Known Vulnerabilities for Tumbleweed by Opensuse
Listed below are 5 of the newest known vulnerabilities associated with "Tumbleweed" by "Opensuse".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-32183 json | Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access to the hacluste... | 7.8 - HIGH | 2023-07-07 | 2023-07-17 |
| CVE-2022-31250 json | A UNIX Symbolic Link (Symlink) Following vulnerability in keylime of openSUSE Tumbleweed allows local attackers to escalate f... | 7.8 - HIGH | 2022-07-20 | 2022-11-08 |
| CVE-2022-28321 json | The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. The pam_access.so... | 9.8 - CRITICAL | 2022-09-19 | 2023-08-08 |
| CVE-2021-25315 json | CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows loca... | 7.8 - HIGH | 2021-03-03 | 2023-06-22 |
| CVE-2020-8026 json | A Incorrect Default Permissions vulnerability in the packaging of inn in openSUSE Leap 15.2, openSUSE Tumbleweed, openSUSE Le... | 7.8 - HIGH | 2020-08-07 | 2023-01-24 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Opensuse | Tumbleweed | 2.6.2-4.2 |