opensuse

3,272 tracked vulnerabilities.

CVE-2019-12519 CRITICAL
Squid < 3.5.28 - Out-of-bounds Write via ESI Expression Evaluation
Apr 15, 2020
CVSS 9.8
EPSS 0.08
CVE-2019-12521 MEDIUM
Squid 3.0-4.7 - Denial of Service via ESI Element Stack Overflow
Apr 15, 2020
CVSS 5.9
EPSS 0.01
CVE-2019-20637 HIGH
Varnish Cache <6.0.5 LTS, 6.1.x, 6.2.x <6.2.2, 6.3.x <6.3.1 - Info ...
Apr 08, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-18905 MEDIUM
SUSE Linux Enterprise Server <12,15 - Info Disclosure
Apr 03, 2020
CVSS 4.8
EPSS 0.00
CVE-2019-18904 MEDIUM
rmt-server < 2.5.2-3.26.1 - Denial of Service via Migration Request
Apr 03, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-14905 MEDIUM
Ansible Engine < 2.7.16 - OS Command Injection via nxos_file_copy Module
Mar 31, 2020
CVSS 5.6
EPSS 0.00
CVE-2019-17185 HIGH
FreeRADIUS 3.0.0-3.0.19 - Denial of Service via Concurrent EAP-pwd Handshakes
Mar 21, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-18860 MEDIUM
Squid < 4.9 - Cross-Site Scripting via cachemgr.cgi Host Parameter
Mar 20, 2020
CVSS 6.1
EPSS 0.04
CVE-2019-12921 MEDIUM
GraphicsMagick < 1.3.32 - Arbitrary File Read via SVG TranslateTextEx
Mar 18, 2020
CVSS 6.5
EPSS 0.06
CVE-2019-20382 LOW
QEMU 4.1.0 - Memory Leak in VNC Disconnect Operation
Mar 05, 2020
CVSS 3.5
EPSS 0.00
CVE-2019-3696 HIGH
pcp < 3.11.9-5.8.1 - Path Traversal and Arbitrary File Write
Mar 03, 2020
CVSS 8.4
EPSS 0.00
CVE-2019-3695 HIGH
pcp < 3.11.9-5.8.1 - Privilege Escalation via /var/log/pcp/configs.sh
Mar 03, 2020
CVSS 8.4
EPSS 0.00
CVE-2019-18903 HIGH
SUSE Linux Enterprise Server <12,15 - Use After Free
Mar 02, 2020
CVSS 7.5
EPSS 0.03
CVE-2019-18902 HIGH
SUSE Linux Enterprise Server <12,15 - Use After Free
Mar 02, 2020
CVSS 7.5
EPSS 0.03
CVE-2019-18901 MEDIUM
SUSE Linux Enterprise Server <10.2.31-3.25.1 - Privilege Escalation
Mar 02, 2020
CVSS 5.1
EPSS 0.00
CVE-2019-18897 HIGH
SUSE Linux Enterprise Server <12,15 - Privilege Escalation
Mar 02, 2020
CVSS 8.4
EPSS 0.00
CVE-2019-3698 MEDIUM
nagios < 3.5.1 - Local Privilege Escalation via Symlink Race in Cronjob
Feb 28, 2020
CVSS 5.7
EPSS 0.00
CVE-2019-17569 MEDIUM
Apache Tomcat 7.0.98-7.0.99, 8.5.48-8.5.50, 9.0.28-9.0.30 - HTTP Request Smuggling via Invalid Transfer-Encoding Header
Feb 24, 2020
CVSS 4.8
EPSS 0.06
CVE-2019-20479 MEDIUM
mod_auth_openidc < 2.4.1 - Open Redirect via Slash and Backslash URL Prefix
Feb 20, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-19921 HIGH
runc <1.0.0-rc9 - Privilege Escalation
Feb 12, 2020
CVSS 7.0
EPSS 0.00
CVE-2019-15606 CRITICAL
Node.js 10.0.0-10.18.1, 13.0.0-13.7.0 - Authorization Bypass via HTTP Header Trailing Whitespace
Feb 07, 2020
CVSS 9.8
EPSS 0.01
CVE-2019-15605 CRITICAL
Node.js 10.0.0-10.18.9, 13.0.0-13.7.0 - HTTP Request Smuggling via Malformed Transfer-Encoding
Feb 07, 2020
CVSS 9.8
EPSS 0.32
CVE-2019-15604 HIGH
Node.js 10.0.0-10.18.9, 13.0.0-13.7.9 - Denial of Service via Crafted X.509 Certificate
Feb 07, 2020
CVSS 7.5
EPSS 0.04
CVE-2019-12528 HIGH
Squid < 4.10 - Information Disclosure via Crafted FTP Server Response
Feb 04, 2020
CVSS 7.5
EPSS 0.24
CVE-2019-15624 MEDIUM
Nextcloud Server 15.0.7 - Improper Input Validation in User ID Handling
Feb 04, 2020
CVSS 4.9
EPSS 0.00
Products
leap 1,898 opensuse 1,454 backports_sle 326 backports 97 evergreen 43 open_build_service 22 factory 10 libsolv 10 supportutils 6 libzypp 5 tumbleweed 4 Tumbleweed 3 openldap2 3 zypper 3 cryptctl 2 cscreen 2 libeconf 2 munge 2 osc 2 pcp 2 rmt-server 2 suse_linux_enterprise_server 2 texlive-filesystem 2 wicked 2 autoyast2 1 canna 1 cyrus-sasl 1 factory_watchman 1 hylafax\+ 1 inn 1
Quick Filters
Critical CVEs With Exploits In CISA KEV