opensuse

3,272 tracked vulnerabilities.

CVE-2020-14562 MEDIUM
Oracle JDK 11.0.7 and 14.0.1 - Unauthenticated Partial Denial of Service in ImageIO
Jul 15, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-14556 MEDIUM
Oracle Java SE <14.0.1 - Privilege Escalation
Jul 15, 2020
CVSS 4.8
EPSS 0.01
CVE-2020-13935 HIGH NUCLEI
Apache Tomcat 7.0.27-7.0.104, 8.5.0-8.5.56, 9.0.0.M1-9.0.36, 10.0.0-M1-M6 DoS via WebSocket Frame Payload Length
Jul 14, 2020
CVSS 7.5
EPSS 0.92
CVE-2020-13934 HIGH
Apache Tomcat 8.5.1-8.5.56, 9.0.0.M5-9.0.36, 10.0.0-M1-10.0.0-M6 - Denial of Service via h2c Direct Connection
Jul 14, 2020
CVSS 7.5
EPSS 0.23
CVE-2020-15719 MEDIUM
OpenLDAP < 2.4.46-10.el8 - Improper Certificate Validation
Jul 14, 2020
CVSS 4.2
EPSS 0.00
CVE-2020-13753 CRITICAL
WebKitGTK and WPE WebKit < 2.28.3 - Sandbox Escape via CLONE_NEWUSER and TIOCSTI
Jul 14, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-10756 MEDIUM
libslirp < 4.3.1 - Out-of-bounds Read in ICMPv6 Echo Reply Handler
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12426 HIGH
Mozilla Firefox <78 - Memory Corruption
Jul 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-12422 HIGH
Firefox < 78.0 - Out-of-bounds Write via JPEG Image Processing
Jul 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-12420 HIGH
Firefox ESR < 68.10, Firefox < 78, Thunderbird < 68.10.0 - Use Afte...
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12419 HIGH
Firefox ESR < 68.10 - Use After Free
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12418 MEDIUM
Firefox ESR < 68.10 - Memory Corruption
Jul 09, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-12417 HIGH
Firefox < 78.0 - Memory Corruption via JavaScript ValueTag Confusion
Jul 09, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-12416 HIGH
Firefox < 78.0 - Use-After-Free in VideoStreamEncoder
Jul 09, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-12415 MEDIUM
Firefox < 78.0 - Incorrect Default Permissions via Manifest URL Handling
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12402 MEDIUM
Firefox < 78.0 - Side-Channel Information Disclosure during RSA Key Generation
Jul 09, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-12424 MEDIUM
Firefox < 78.0 - Permission Prompt Bypass via WebRTC URI
Jul 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15095 MEDIUM
npm < 6.14.6 - Information Exposure via Log File
Jul 07, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-10745 HIGH
Samba < 4.10.17, < 4.11.11, < 4.12.4 - Denial of Service via NetBios over TCP/IP
Jul 07, 2020
CVSS 7.5
EPSS 0.20
CVE-2020-10730 MEDIUM
Samba <4.10.17-4.12.4 - Memory Corruption
Jul 07, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-15567 HIGH
Xen < 4.13.1 - Race Condition via Non-Atomic EPT PTE Modification
Jul 07, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15565 HIGH
Xen 3.2.0-4.13.0 - Denial of Service via Insufficient Cache Write-Back
Jul 07, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-15563 MEDIUM
Xen 4.8.0-4.13.0 - Denial of Service via Dirty Video RAM Tracking
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-10760 MEDIUM
Samba <4.10.17-4.12.4 - Use After Free
Jul 06, 2020
CVSS 6.5
EPSS 0.02
CVE-2020-14303 HIGH
Samba < 4.10.17 - Denial of Service via Empty UDP Packet
Jul 06, 2020
CVSS 7.5
EPSS 0.26
Products
leap 1,898 opensuse 1,454 backports_sle 326 backports 97 evergreen 43 open_build_service 22 factory 10 libsolv 10 supportutils 6 libzypp 5 tumbleweed 4 Tumbleweed 3 openldap2 3 zypper 3 cryptctl 2 cscreen 2 libeconf 2 munge 2 osc 2 pcp 2 rmt-server 2 suse_linux_enterprise_server 2 texlive-filesystem 2 wicked 2 autoyast2 1 canna 1 cyrus-sasl 1 factory_watchman 1 hylafax\+ 1 inn 1
Quick Filters
Critical CVEs With Exploits In CISA KEV