opensuse
3,278 tracked vulnerabilities.
CVE-2026-44941
HIGH
libzypp path traversal via "keyhint" in repomd.xml
Jul 02, 2026
CVSS 8.4
EPSS 0.01
CVE-2026-56004
CRITICAL
openSUSE obs-service-tar_scm < 0.12.4 - Command Injection via Mercurial Handler
Jul 02, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-25707
HIGH
Handcrafted repo metadata may cause arbitrary local files to be overwritten by libzypp
Jun 29, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-48864
HIGH
Libsolv: heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page data
May 26, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-9149
MEDIUM
Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file
May 21, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-9150
MEDIUM
Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums
May 20, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-31431
HIGH
KEVNUCLEI
crypto: algif_aead - Revert to operating out-of-place
Apr 22, 2026
CVSS 7.8
EPSS 0.96
CVE-2026-25701
HIGH
openSUSE sdbootutil - Insecure Temp File
Feb 25, 2026
EPSS 0.00
CVE-2026-25506
HIGH
munge 0.5-0.5.17 - Buffer Overflow via Oversized Address Length Field
Feb 10, 2026
CVSS 7.7
EPSS 0.00
CVE-2025-62875
MEDIUM
OpenSMTPD - Denial of Service
Nov 20, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-53881
MEDIUM
exim <4.98.2-lp156.248.1 - Privilege Escalation
Oct 02, 2025
EPSS 0.00
CVE-2025-46810
HIGH
openSUSE Tumbleweed traefik2 <2.11.29 - Privilege Escalation
Sep 02, 2025
EPSS 0.00
CVE-2025-32463
CRITICAL
KEVNUCLEI
Sudo <1.9.17p1 - Privilege Escalation
Jun 30, 2025
CVSS 9.3
EPSS 0.47
CVE-2024-49506
HIGH
System <non-default config> - DoS/Info Disclosure
Nov 13, 2024
EPSS 0.00
CVE-2024-49505
MEDIUM
openSUSE Tumbleweed MirrorCache <1.083 - XSS
Nov 13, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-32182
MEDIUM
openSUSE Leap 15.5 - Improper Link Resolution Before File Access in postfix
Sep 19, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-32184
HIGH
opensuse-welcome <0.1.9+git.35.4b9444a - Code Injection
Sep 19, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-32183
HIGH
openSUSE Tumbleweed hawk2 - Privilege Escalation via Incorrect Default Permissions
Jul 07, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-32181
LOW
libeconf < 0.5.2 - Denial of Service via Malformed Configuration Files
Jun 01, 2023
CVSS 3.3
EPSS 0.01
CVE-2023-22652
LOW
libeconf < 0.5.2 - Denial of Service via Malformed Config Files
Jun 01, 2023
CVSS 3.3
EPSS 0.01
CVE-2023-22643
MEDIUM
libzypp-plugin-appdata < 1.0.1+git.20180426 - Command Injection via REPO Settings
Feb 07, 2023
CVSS 6.3
EPSS 0.02
CVE-2022-45154
MEDIUM
supportutils < 3.0.10-95.51.1 - Cleartext Storage of Sensitive Information in Support Logs
Feb 15, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-45153
HIGH
saphanabootstrap-formula < 0.13.1+git.1667812208.4db963e - Privilege Escalation via Sudo Configuration Manipulation
Feb 15, 2023
CVSS 7.0
EPSS 0.00
CVE-2022-21948
MEDIUM
openSUSE paste <b57b9f87e303a3db9465776e657378e96845493b - XSS
Feb 07, 2023
CVSS 4.3
EPSS 0.01
CVE-2022-31254
HIGH
SUSE Linux Enterprise Server for SAP <2.10 - Privilege Escalation
Feb 07, 2023
CVSS 7.8
EPSS 0.00
Products
leap 1,898
opensuse 1,454
backports_sle 326
backports 97
evergreen 43
open_build_service 22
libsolv 13
factory 10
libzypp 7
supportutils 6
tumbleweed 4
Tumbleweed 3
openldap2 3
zypper 3
cryptctl 2
cscreen 2
libeconf 2
munge 2
osc 2
pcp 2
rmt-server 2
suse_linux_enterprise_server 2
texlive-filesystem 2
wicked 2
autoyast2 1
buildservice 1
canna 1
cyrus-sasl 1
factory_watchman 1
hylafax\+ 1
Quick Filters