opensuse

3,272 tracked vulnerabilities.

CVE-2020-8020 MEDIUM
open-build-service < 7cc32c8e2ff7290698e101d9a80a9dc29a5500fb - Stored Cross-Site Scripting
May 13, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12823 CRITICAL
OpenConnect 8.09 - Buffer Overflow in get_cert_name
May 12, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-11866 HIGH
libEMF < 1.0.11 - Use-After-Free
May 11, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-11865 HIGH
libEMF < 1.0.11 - Out-of-Bounds Memory Access
May 11, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-11864 MEDIUM
libEMF < 1.0.11 - Denial of Service
May 11, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11863 MEDIUM
libEMF < 1.0.11 - Denial of Service
May 11, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-12771 MEDIUM
Linux kernel <5.6.11 - Info Disclosure
May 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-12769 MEDIUM
Linux Kernel < 5.4.17 - Denial of Service via Concurrent SPI Transfer Calls
May 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-12767 MEDIUM
libexif 0.6.21 - Divide By Zero in exif_entry_get_value
May 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-10690 MEDIUM
Linux Kernel < 5.5 - Use-After-Free via PTP Clock Resource Deallocation Race
May 08, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-12108 MEDIUM
GNU Mailman < 2.1.31 - Arbitrary Content Injection via /options/mailman
May 06, 2020
CVSS 6.5
EPSS 0.08
CVE-2020-10704 HIGH
Samba < 4.10.15 - Denial of Service via LDAP Request Handling
May 06, 2020
CVSS 7.5
EPSS 0.09
CVE-2020-12672 HIGH
GraphicsMagick <1.3.35 - Buffer Overflow
May 06, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-12656 MEDIUM
Linux Kernel < 5.6.10 - Memory Leak in rpcsec_gss_krb5 gss_mech_free
May 05, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-12653 HIGH
Linux kernel <5.5.4 - Privilege Escalation
May 05, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10700 MEDIUM
Samba <4.10.15-4.12.2 - Use After Free
May 04, 2020
CVSS 5.3
EPSS 0.03
CVE-2020-12641 CRITICAL KEVNUCLEI
Roundcube Webmail < 1.4.4 - Remote Code Execution via Shell Metacharacters in Image Configuration
May 04, 2020
CVSS 9.8
EPSS 0.93
CVE-2020-12640 CRITICAL
Roundcube Webmail <1.4.4 - Path Traversal
May 04, 2020
CVSS 9.8
EPSS 0.23
CVE-2020-12625 MEDIUM
Roundcube Webmail < 1.4.4 - Stored Cross-Site Scripting via HTML Message CDATA
May 04, 2020
CVSS 6.1
EPSS 0.02
CVE-2020-10683 CRITICAL
dom4j < 2.0.3 - XML External Entity Injection
May 01, 2020
CVSS 9.8
EPSS 0.07
CVE-2020-12050 HIGH
Opensuse Backports Sle - Race Condition
Apr 30, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-11652 MEDIUM KEV
SaltStack Salt < 2019.2.4 - Authenticated Path Traversal via ClearFuncs Methods
Apr 30, 2020
CVSS 6.5
EPSS 0.94
CVE-2020-11651 CRITICAL KEV
SaltStack Salt <2019.2.4,3000.2 - RCE
Apr 30, 2020
CVSS 9.8
EPSS 0.94
CVE-2020-11022 MEDIUM
jQuery 1.12.0-3.4.1 - Cross-Site Scripting via DOM Manipulation Methods
Apr 29, 2020
CVSS 6.9
EPSS 0.02
CVE-2020-10663 HIGH
JSON gem < 2.2.0 - Unsafe Object Creation via JSON Parsing
Apr 28, 2020
CVSS 7.5
EPSS 0.06
Products
leap 1,898 opensuse 1,454 backports_sle 326 backports 97 evergreen 43 open_build_service 22 factory 10 libsolv 10 supportutils 6 libzypp 5 tumbleweed 4 Tumbleweed 3 openldap2 3 zypper 3 cryptctl 2 cscreen 2 libeconf 2 munge 2 osc 2 pcp 2 rmt-server 2 suse_linux_enterprise_server 2 texlive-filesystem 2 wicked 2 autoyast2 1 canna 1 cyrus-sasl 1 factory_watchman 1 hylafax\+ 1 inn 1
Quick Filters
Critical CVEs With Exploits In CISA KEV