📦

suse_linux

Vendor: suse

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 27 Code Available
Total RCEs 15 Remote Access
Total CVEs 344 Total Indexed
Avg. EPSS 1.69% Exploit Prob.
Latest CVE CVE-2010-3912 Jan 13

Security Vulnerability Index

Page 7 / 35
5.1 CVSS
CVE-2001-0918
RCE

Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arbitrary commands by not opening files securely.

EPSS: 0.84%
2.1 CVSS
CVE-2001-0914

Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial of service (crash) by starting the core vmlinux kernel, possibly related to poor error checking during ELF loading.

EPSS: 0.06%
7.5 CVSS
CVE-2001-0763
RCE Exploit Found

Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function.

EPSS: 25.35%
7.2 CVSS
CVE-2001-1012

Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a subdirectory under /tmp/screens/.

EPSS: 0.06%
7.2 CVSS
CVE-2001-0525

Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gain privileges via a long first command line argument.

EPSS: 0.05%
4.6 CVSS
CVE-2001-0610
Exploit Found

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.

EPSS: 0.27%
7.5 CVSS
CVE-2001-1130
RCE Exploit Found

Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file.

EPSS: 4.40%
10.0 CVSS
CVE-2001-0388

time server daemon timed allows remote attackers to cause a denial of service via malformed packets.

EPSS: 0.99%
7.2 CVSS
CVE-2001-0193
Exploit Found

Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.

EPSS: 0.21%
2.1 CVSS
CVE-2001-0178

kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.

EPSS: 0.10%