Vulnerabilities > Suse > Portus

DATE CVE VULNERABILITY TITLE RISK
2018-03-11 CVE-2018-8059 Improper Certificate Validation vulnerability in Suse Portus 2.3.0
The Djelibeybi configuration examples for use of NGINX in SUSE Portus 2.3, when applied to certain configurations involving Docker Compose, have a Missing SSL Certificate Validation issue because no proxy_ssl_* directives are used.
low complexity
suse CWE-295
5.8
5.8
2017-09-20 CVE-2017-14621 Cross-site Scripting vulnerability in Suse Portus 2.2.0
Portus 2.2.0 has XSS via the Team field, related to typeahead.
network
suse CWE-79
3.5
3.5