Vulnerabilities > Opensuse

DATE CVE VULNERABILITY TITLE RISK
2021-12-25 CVE-2021-4166 vim is vulnerable to Out-of-bounds Read 7.1
2021-09-02 CVE-2021-33928 Out-of-bounds Write vulnerability in Opensuse Libsolv
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
network
low complexity
opensuse CWE-787
7.5
2021-09-02 CVE-2021-33929 Out-of-bounds Write vulnerability in Opensuse Libsolv
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
network
low complexity
opensuse CWE-787
7.5
2021-09-02 CVE-2021-33930 Out-of-bounds Write vulnerability in Opensuse Libsolv
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
network
low complexity
opensuse CWE-787
7.5
2021-09-02 CVE-2021-33938 Out-of-bounds Write vulnerability in Opensuse Libsolv
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
network
low complexity
opensuse CWE-787
7.5
2021-06-30 CVE-2019-18906 Unspecified vulnerability in Opensuse Cryptctl
A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attackers with access to the hashed password to use it without having to crack it.
network
low complexity
opensuse
critical
9.8
2021-06-10 CVE-2021-31997 Unspecified vulnerability in Opensuse Python-Postorius 1.3.2Lp152.1.2
A UNIX Symbolic Link (Symlink) Following vulnerability in python-postorius of openSUSE Leap 15.2, Factory allows local attackers to escalate from users postorius or postorius-admin to root.
local
low complexity
opensuse
7.8
2021-06-10 CVE-2021-31998 Unspecified vulnerability in Opensuse INN 2.4.2170.21.3.1
A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE Leap 15.2 allows local attackers to escalate their privileges from the news user to root.
local
low complexity
opensuse
7.8
2021-05-18 CVE-2021-3200 Classic Buffer Overflow vulnerability in multiple products
Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause a denial of service
local
low complexity
opensuse oracle CWE-120
3.3
2021-05-05 CVE-2021-25319 Unspecified vulnerability in Opensuse Factory
A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root.
local
low complexity
opensuse
7.8