Known Vulnerabilities for products from Opensuse
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Opensuse".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-57895 json | Not Provided | 2025-01-15 | 2026-02-19 | |
| CVE-2023-32184 json | A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code... | 7.8 - HIGH | 2023-09-19 | 2023-09-22 |
| CVE-2023-32183 json | Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access to the hacluste... | 7.8 - HIGH | 2023-07-07 | 2023-07-17 |
| CVE-2023-32182 json | A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 p... | 7.8 - HIGH | 2023-09-19 | 2023-09-25 |
| CVE-2023-32181 json | A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in openSUSE libeconf allows for DoS vi... | 6.5 - MEDIUM | 2023-06-01 | 2023-06-08 |
| CVE-2023-30079 json | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-22652. Reason: This record is a duplicate of CVE-2023-22652. No... | Not Provided | 2023-08-22 | 2023-11-07 |
| CVE-2023-30078 json | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-32181. Reason: This record is a duplicate of CVE-2023-32181. No... | Not Provided | 2023-08-22 | 2023-11-07 |
| CVE-2023-22652 json | A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in openSUSE libeconf leads to DoS via ... | 6.5 - MEDIUM | 2023-06-01 | 2023-09-13 |
| CVE-2023-22643 json | An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in libzypp-plugin... | 7.8 - HIGH | 2023-02-07 | 2023-02-14 |
| CVE-2022-46163 json | Travel support program is a rails app to support the travel support program of openSUSE (TSP). Sensitive user data (bank acco... | 7.5 - HIGH | 2023-01-10 | 2023-07-07 |
| CVE-2022-45154 json | A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux En... | 5.5 - MEDIUM | 2023-02-15 | 2023-02-24 |
| CVE-2022-45153 json | An Incorrect Default Permissions vulnerability in saphanabootstrap-formula of SUSE Linux Enterprise Module for SAP Applicatio... | 7.8 - HIGH | 2023-02-15 | 2023-02-24 |
| CVE-2022-31256 json | A Improper Link Resolution Before File Access ('Link Following') vulnerability in a script called by the sendmail systemd ser... | 7.8 - HIGH | 2022-10-26 | 2022-10-28 |
| CVE-2022-31254 json | A Incorrect Default Permissions vulnerability in rmt-server-regsharing service of SUSE Linux Enterprise Server for SAP 15, SU... | 7.8 - HIGH | 2023-02-07 | 2023-02-14 |
| CVE-2022-31253 json | A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory allows local attackers with control of the ldap user o... | 7.8 - HIGH | 2022-11-09 | 2022-11-10 |
| CVE-2022-31252 json | A Incorrect Authorization vulnerability in chkstat of SUSE Linux Enterprise Server 12-SP5; openSUSE Leap 15.3, openSUSE Leap ... | 4.4 - MEDIUM | 2022-10-06 | 2022-11-07 |
| CVE-2022-31251 json | A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attack... | 6.3 - MEDIUM | 2022-09-07 | 2023-06-22 |
| CVE-2022-31250 json | A UNIX Symbolic Link (Symlink) Following vulnerability in keylime of openSUSE Tumbleweed allows local attackers to escalate f... | 7.8 - HIGH | 2022-07-20 | 2022-11-08 |
| CVE-2022-28321 json | The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. The pam_access.so... | 9.8 - CRITICAL | 2022-09-19 | 2023-08-08 |
| CVE-2022-21950 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-09-07 | 2023-04-14 |
Known software with vulnerabilities from Opensuse
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Opensuse | Autoyast2 | - |
| Application | Opensuse | Backports | - |
| Application | Opensuse | Backports Sle | 15.0 |
| Application | Opensuse | Cryptctl | 1.2.6 |
| Operating System | Opensuse | Evergreen | 11.4 |
| Application | Opensuse | Factory | - |
| Application | Opensuse | Hylafax | 5.6.1-lp151.3.7 |
| Operating System | Opensuse | Leap | 15.0 |
| Application | Opensuse | Libsolv | 0.6.10 |
| Application | Opensuse | Libzypp | 10.0.0 |
| Application | Opensuse | Munge | - |
| Application | Opensuse | Munin | - |
| Application | Opensuse | Openldap2 | 2.4.26-0.74.13 |
| Operating System | Opensuse | Opensuse | - |
| Operating System | Opensuse | Open Build Service | 0.3 |
| Application | Opensuse | Open Build Service | - |
| Application | Opensuse | Osc | 0.162.1-15.9.1 |
| Application | Opensuse | Pcp | - |
| Application | Opensuse | Rmt-server | - |
| Application | Opensuse | Supportutils | 3.1-5.7.1 |