suse

1,226 tracked vulnerabilities.

CVE-2025-62879 MEDIUM
Rancher Backup Operator - Info Disclosure
Mar 04, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-67860 LOW
NeuVector Scanner - Info Disclosure
Feb 25, 2026
CVSS 3.8
EPSS 0.00
CVE-2025-67601 HIGH
Rancher Manager - Improper Certificate Validation via CLI Login Command
Feb 25, 2026
CVSS 8.3
EPSS 0.00
CVE-2025-62878 CRITICAL
Rancher local-path-provisioner < 0.0.34 - Path Traversal via pathPattern Parameter
Feb 25, 2026
CVSS 9.9
EPSS 0.01
CVE-2025-62877 CRITICAL
SUSE Virtualization (Harvester) <1.5.x,1.6.x - Info Disclosure
Jan 08, 2026
CVSS 9.8
EPSS 0.00
CVE-2025-66001 HIGH
NeuVector 5.3.0-5.4.7 - Improper Certificate Validation in OpenID Connect
Jan 08, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-62876 MEDIUM
lightdm-kde-greeter <6.0.4 - Privilege Escalation
Nov 12, 2025
EPSS 0.00
CVE-2025-53883 CRITICAL
Container suse/manager/5.0/x86_64/server:latest - Basic XSS
Oct 30, 2025
EPSS 0.00
CVE-2025-53880 HIGH
SUSE Manager Proxy - Path Traversal and Arbitrary File Write via tftpsync Scripts
Oct 30, 2025
EPSS 0.00
CVE-2025-54471 MEDIUM
NeuVector 5.3.0-5.4.6 - Use of Hard-coded Cryptographic Key
Oct 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-54470 HIGH
NeuVector 5.3.0-5.3.4, 5.4.0-5.4.6 - Certificate Validation Bypass and DoS via Telemetry
Oct 30, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-54469 CRITICAL
NeuVector 5.3.0-5.3.4/5.4.0-5.4.6 OS Command Injection via CLUSTER_RPC_PORT/CLUSTER_LAN_PORT
Oct 30, 2025
CVSS 9.9
EPSS 0.00
CVE-2025-54468 MEDIUM
Rancher 2.9.0-2.12.1 Sensitive Information Exposure via Impersonate-Extra Headers
Oct 02, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-8077 CRITICAL
NeuVector <= 5.4.5 - Use of Default Password for Admin Account
Sep 17, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-54467 MEDIUM
NeuVector 5.0.0-5.4.5 - Insufficiently Protected Credentials in Security Event Log
Sep 17, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-53884 MEDIUM
NeuVector 5.0.0-5.4.5 - Use of a One-Way Hash without a Salt
Sep 17, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-46809 MEDIUM
SUSE Manager Proxy and Server 4.3 - Plaintext Password Storage in Log Files
Jul 31, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-46811 CRITICAL
SUSE Linux Manager <5.0.27 - Privilege Escalation
Jul 30, 2025
CVSS 9.8
EPSS 0.10
CVE-2025-6018 HIGH
pam-config - Local Privilege Escalation via Polkit Bypass
Jul 23, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-53882 MEDIUM
openSUSE mailman3 logrotate - Arbitrary Process Signal
Jul 23, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-32463 CRITICAL KEVNUCLEI
Sudo <1.9.17p1 - Privilege Escalation
Jun 30, 2025
CVSS 9.3
EPSS 0.47
CVE-2025-23393 MEDIUM
SUSE Manager Server Module 4.3 < 4.3.85-150400.3.105.3 - Cross-Site Scripting in spacewalk-java
May 27, 2025
CVSS 5.2
EPSS 0.00
CVE-2025-46802 MEDIUM
SUSE Linux Enterprise Micro 5.3-5.5 and Module for Basesystem 15 SP6 - Unauthenticated PTY Permission Assignment
May 26, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-23394 CRITICAL
openSUSE Tumbleweed cyrus-imapd <3.8.4.2.1 - Privilege Escalation
May 26, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-23392 MEDIUM
SUSE Manager Server Module < 4.3.85-150400.3.105.3 - Cross-Site Scripting
May 26, 2025
CVSS 5.2
EPSS 0.00