opensuse

3,272 tracked vulnerabilities.

CVE-2020-14392 MEDIUM
Perl-DBI < 1.643 - Memory Corruption
Sep 16, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-14386 MEDIUM
Linux Kernel < 4.9.239 - Privilege Escalation via Memory Corruption
Sep 16, 2020
CVSS 6.7
EPSS 0.01
CVE-2020-8927 MEDIUM
Brotli < 1.0.8 - Denial of Service via One-Shot Decompression Buffer Overflow
Sep 15, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-25284 MEDIUM
Linux Kernel < 5.8.9 - Incorrect Authorization in rbd Block Device Driver
Sep 13, 2020
CVSS 4.1
EPSS 0.00
CVE-2020-6097 HIGH
atftp <0.7.git20120829-3.1+b1 - DoS
Sep 10, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-25219 HIGH
libproxy 0.4.0-0.4.15 - Denial of Service via Infinite HTTP Response Stream
Sep 09, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-25212 HIGH
Linux Kernel < 5.8.3 - Time-of-check Time-of-use Race Condition in NFS Client
Sep 09, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-14342 MEDIUM
cifs-utils 5.6-6.10 - OS Command Injection via Samba Password Request
Sep 09, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-24659 HIGH
GnuTLS <3.6.15 - NULL Pointer Dereference
Sep 04, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-24977 MEDIUM
libxml2 2.9.10 - Out-of-bounds Read in xmlEncodeEntitiesInternal
Sep 04, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-24654 LOW
KDE Ark < 20.08.1 - Arbitrary File Write via Symlink in TAR Archive
Sep 02, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-24553 MEDIUM
Go <1.14.8, <1.15.1 - XSS
Sep 02, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-15811 MEDIUM
Squid <4.13-5.0.4 - HTTP Request Splitting
Sep 02, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15810 MEDIUM
Squid < 4.13 and 5.x < 5.0.4 - HTTP Request Smuggling via Relaxed Header Parsing
Sep 02, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-8023 HIGH
openldap2 < 2.4.41-18.71.2 - Privilege Escalation from User ldap to root via Start Script
Sep 01, 2020
CVSS 7.7
EPSS 0.00
CVE-2020-14364 MEDIUM
QEMU < 5.2.0 - Out-of-bounds Read/Write in USB Emulator
Aug 31, 2020
CVSS 5.0
EPSS 0.13
CVE-2020-25032 HIGH
Flask-Cors < 3.0.9 - Path Traversal via Non-Canonical Pathname
Aug 31, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-14352 HIGH
librepo < 1.12.1 - Path Traversal via Remote Repository Metadata
Aug 30, 2020
CVSS 8.0
EPSS 0.04
CVE-2020-24972 HIGH
Kleopatra <3.1.12 - Code Execution via openpgp4fpr URL Handling
Aug 29, 2020
CVSS 8.8
EPSS 0.21
CVE-2020-24614 HIGH
Fossil <2.10.2, <2.11.2, <2.12.1 - Authenticated RCE
Aug 25, 2020
CVSS 8.8
EPSS 0.06
CVE-2020-24606 HIGH
Squid 3.0-4.12 and 5.x < 5.0.4 - Denial of Service via Crafted Cache Digest Response
Aug 24, 2020
CVSS 8.6
EPSS 0.06
CVE-2020-14350 HIGH
PostgreSQL < 9.5.23 - Untrusted Search Path in Extension Installation Scripts
Aug 24, 2020
CVSS 7.3
EPSS 0.00
CVE-2020-14349 HIGH
PostgreSQL 10.0-10.13 - Authenticated SQL Injection via Logical Replication Search Path
Aug 24, 2020
CVSS 7.1
EPSS 0.02
CVE-2020-8624 MEDIUM
BIND <9.16.5 - Privilege Escalation
Aug 21, 2020
CVSS 4.3
EPSS 0.02
CVE-2020-8623 HIGH
BIND 9.10.0-9.11.21, 9.12.0-9.16.5, 9.17.0-9.17.3 - Reachable Assertion via Crafted Query Packet
Aug 21, 2020
CVSS 7.5
EPSS 0.18
Products
leap 1,898 opensuse 1,454 backports_sle 326 backports 97 evergreen 43 open_build_service 22 factory 10 libsolv 10 supportutils 6 libzypp 5 tumbleweed 4 Tumbleweed 3 openldap2 3 zypper 3 cryptctl 2 cscreen 2 libeconf 2 munge 2 osc 2 pcp 2 rmt-server 2 suse_linux_enterprise_server 2 texlive-filesystem 2 wicked 2 autoyast2 1 canna 1 cyrus-sasl 1 factory_watchman 1 hylafax\+ 1 inn 1
Quick Filters
Critical CVEs With Exploits In CISA KEV