📦

suse_linux

Vendor: suse

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 27 Code Available
Total RCEs 15 Remote Access
Total CVEs 344 Total Indexed
Avg. EPSS 1.69% Exploit Prob.
Latest CVE CVE-2010-3912 Jan 13

Security Vulnerability Index

Page 6 / 35
10.0 CVSS
CVE-2004-2004
Exploit Found

The Live CD in SUSE LINUX 9.1 Personal edition is configured without a password for root, which allows remote attackers to gain privileges via SSH.

EPSS: 0.93%
2.1 CVSS
CVE-2004-0064
Exploit Found

The SuSEconfig.gnome-filesystem script for YaST in SuSE 9.0 allows local users to overwrite arbitrary files via a symlink attack on files within the tmp.SuSEconfig.gnome-filesystem.$RANDOM temporary directory.

EPSS: 0.38%
2.1 CVSS
CVE-2003-1295

Unspecified vulnerability in xscreensaver 4.12, and possibly other versions, allows attackers to cause xscreensaver to crash via unspecified vectors "while verifying the user-password."

EPSS: 0.07%
4.6 CVSS
CVE-2003-0847
Exploit Found

SuSEconfig.susewm in the susewm package on SuSE Linux 8.2Pro allows local users to overwrite arbitrary files via a symlink attack on the susewm.$$ temporary file.

EPSS: 0.36%
4.6 CVSS
CVE-2003-0846

SuSEconfig.javarunt in the javarunt package on SuSE Linux 7.3Pro allows local users to overwrite arbitrary files via a symlink attack on the .java_wrapper temporary file.

EPSS: 0.07%
4.9 CVSS
CVE-2002-2185

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

EPSS: 0.66%
7.2 CVSS
CVE-2002-1285

runlpr in the LPRng package allows the local lp user to gain root privileges via certain command line arguments.

EPSS: 0.15%
7.2 CVSS
CVE-2002-0854

Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges.

EPSS: 0.06%
7.5 CVSS
CVE-2002-0758
RCE

ifup-dhcp script in the sysconfig package for SuSE 8.0 allows remote attackers to execute arbitrary commands via spoofed DHCP responses, which are stored and executed in a file.

EPSS: 1.09%
7.2 CVSS
CVE-2002-0762

shadow package in SuSE 8.0 allows local users to destroy the /etc/passwd and /etc/shadow files or assign extra group privileges to some users by changing filesize limits before calling programs that modify the files.

EPSS: 0.15%