Vulnerabilities > Opensuse > Factory

DATE CVE VULNERABILITY TITLE RISK
2021-05-05 CVE-2021-25319 Incorrect Default Permissions vulnerability in Opensuse Factory
A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root.
local
low complexity
opensuse CWE-276
7.2
2020-06-29 CVE-2019-3681 External Control of File Name OR Path vulnerability in Opensuse OSC
A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Development Kit 12-SP5, SUSE Linux Enterprise Software Development Kit 12-SP4; openSUSE Leap 15.1, openSUSE Factory allowed remote attackers that can change downloaded packages to overwrite arbitrary files.
6.4