Known Vulnerabilities for products from Suse
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Suse".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-23301 json | 5.5 - MEDIUM | 2024-01-12 | 2024-02-03 | |
| CVE-2024-12087 json | A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-ena... | Not Provided | 2025-01-14 | 2026-04-14 |
| CVE-2024-12086 json | A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. ... | Not Provided | 2025-01-14 | 2026-04-14 |
| CVE-2024-12085 json | A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipu... | Not Provided | 2025-01-14 | 2026-04-14 |
| CVE-2023-34256 json | ** DISPUTED ** An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16... | 5.5 - MEDIUM | 2023-05-31 | 2023-11-15 |
| CVE-2023-32186 json | A Allocation of Resources Without Limits or Throttling vulnerability in SUSE RKE2 allows attackers with access to K3s server... | 7.5 - HIGH | 2023-09-19 | 2023-09-22 |
| CVE-2023-32182 json | A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 p... | 7.8 - HIGH | 2023-09-19 | 2023-09-25 |
| CVE-2023-29552 json | The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This... | 7.5 - HIGH | 2023-04-25 | 2023-05-04 |
| CVE-2023-23005 json | ** DISPUTED ** In the Linux kernel before 6.2, mm/memory-tiers.c misinterprets the alloc_memory_type return value (expects it... | 5.5 - MEDIUM | 2023-03-01 | 2023-11-07 |
| CVE-2023-22651 json | Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. A failure in the update logic of Ran... | 9.9 - CRITICAL | 2023-05-04 | 2023-05-10 |
| CVE-2023-22648 json | A Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected to us... | 8.8 - HIGH | 2023-06-01 | 2023-10-05 |
| CVE-2023-22647 json | An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions ... | 8 - HIGH | 2023-06-01 | 2023-10-05 |
| CVE-2023-22644 json | An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server Module 4.2 spacewalk-java, SUS... | 5.5 - MEDIUM | 2023-09-20 | 2023-09-25 |
| CVE-2023-22643 json | An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in libzypp-plugin... | 7.8 - HIGH | 2023-02-07 | 2023-02-14 |
| CVE-2022-45155 json | An Improper Handling of Exceptional Conditions vulnerability in obs-service-go_modules of openSUSE Factory allows attackers t... | 5.5 - MEDIUM | 2023-03-15 | 2023-03-21 |
| CVE-2022-45154 json | A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux En... | 5.5 - MEDIUM | 2023-02-15 | 2023-02-24 |
| CVE-2022-45153 json | An Incorrect Default Permissions vulnerability in saphanabootstrap-formula of SUSE Linux Enterprise Module for SAP Applicatio... | 7.8 - HIGH | 2023-02-15 | 2023-02-24 |
| CVE-2022-43760 json | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SUSE Rancher allows ... | 8.4 - HIGH | 2023-06-01 | 2023-06-08 |
| CVE-2022-43759 json | A Improper Privilege Management vulnerability in SUSE Rancher, allows users with access to the escalate verb on PRTBs to esca... | 8.8 - HIGH | 2023-02-07 | 2023-02-15 |
| CVE-2022-43758 json | A Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SUSE Rancher al... | 6.8 - MEDIUM | 2023-02-07 | 2023-02-15 |
Known software with vulnerabilities from Suse
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Suse | Caas Platform | 3.0 |
| Application | Suse | Cloud | 1.0 |
| Application | Suse | Enterprise Storage | 5.0 |
| Application | Suse | Inn | - |
| Application | Suse | Keystone-json-assignment | - |
| Application | Suse | Kiwi | 4.85 |
| Application | Suse | Lifecycle Management Server | 1.3 |
| Operating System | Suse | Linux | - |
| Operating System | Suse | Linux Enterprise | 12.0 |
| Application | Suse | Linux Enterprise Debuginfo | 10 |
| Operating System | Suse | Linux Enterprise Desktop | - |
| Operating System | Suse | Linux Enterprise High Availability Extension | 11 |
| Operating System | Suse | Linux Enterprise High Performance Computing | 15 |
| Application | Suse | Linux Enterprise High Performance Computing | 15.0 |
| Application | Suse | Linux Enterprise Module For Legacy | 12 |
| Application | Suse | Linux Enterprise Point Of Sale | 11 |
| Operating System | Suse | Linux Enterprise Real Time | 11 |
| Operating System | Suse | Linux Enterprise Real Time Extension | 10 |
| Operating System | Suse | Linux Enterprise Sdk | 11 |
| Operating System | Suse | Linux Enterprise Server | - |