suse

1,226 tracked vulnerabilities.

CVE-2024-46953 HIGH
Ghostscript < 10.04.0 - Integer Overflow in Output Filename Parsing
Nov 10, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-46951 HIGH
Artifex Ghostscript < 10.04.0 - Remote Code Execution via Uninitialized Pointer in Pattern Color Space
Nov 10, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-22034 MEDIUM
SUSE Linux Enterprise Desktop 15 SP5 - Arbitrary Configuration Manipulation via .osc Special Files
Oct 16, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-22033 MEDIUM
SUSE Package Hub 15 SP5 < 0.2.1-bp155.3.3.1 - OS Command Injection via obs-service-download_url Configuration
Oct 16, 2024
CVSS 6.3
EPSS 0.01
CVE-2024-22032 MEDIUM
Rancher RKE1 - Plaintext Secret Exposure During Reconciliation
Oct 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-22030 HIGH
Rancher 2.7.0-2.9.2 URL Certificate Validation - Man-in-the-Middle
Oct 16, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-22029 HIGH
SUSE Container suse/manager/5.0/x86_64/server:5.0.0-beta1.2.122 - Insecure Permissions in Tomcat Packaging
Oct 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-6387 HIGH
OpenSSH - DoS
Jul 01, 2024
CVSS 8.1
EPSS 1.00
CVE-2024-23301 MEDIUM
Relax-and-Recover < 2.7 - Incorrect Default Permissions in initrd
Jan 12, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-32199 MEDIUM
Rancher Manager - Privilege Escalation
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2023-32197 MEDIUM
Rancher 2.7.0-2.7.13 and 2.8.0-2.8.4 - Privilege Escalation via RoleTemplate External Setting
Apr 16, 2025
CVSS 6.6
EPSS 0.01
CVE-2023-32189 MEDIUM
Product <Version - Local Privilege Escalation
Oct 16, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-32196 MEDIUM
Rancher 2.7.0-2.7.13 and 2.8.0-2.8.4 - Privilege Escalation via RoleTemplate External Check Bypass
Oct 16, 2024
CVSS 6.6
EPSS 0.00
CVE-2023-32194 HIGH
Rancher 2.6.0-2.6.13, 2.7.0-2.7.9, 2.8.0-2.8.1 - Improper Privilege Management in Global Role Assignment
Oct 16, 2024
CVSS 7.2
EPSS 0.00
CVE-2023-32193 HIGH
rancher/norman <0.0.0-20240207153100-3bb70b772b52 - Unauthenticated Cross-Site Scripting via Public API Endpoint
Oct 16, 2024
CVSS 8.3
EPSS 0.00
CVE-2023-32192 HIGH
rancher/apiserver < 0.0.0-20240207153957-4fd7d821d952 - Unauthenticated Cross-Site Scripting via Public API Endpoint
Oct 16, 2024
CVSS 8.3
EPSS 0.00
CVE-2023-32191 CRITICAL
RKE 1.4.18-1.4.18, 1.5.9-1.5.9 - Insecure Storage of Sensitive Information in Cluster State ConfigMap
Oct 16, 2024
CVSS 9.9
EPSS 0.01
CVE-2023-32190 HIGH
openSUSE Tumbleweed < 0.26-37.1 - Arbitrary File Permission Manipulation via mlocate %post Script
Oct 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2023-32188 CRITICAL
NeuVector - Forged JWT Token Remote Code Execution
Oct 16, 2024
EPSS 0.00
CVE-2023-22650 HIGH
Rancher 2.7.0-2.7.13 and 2.8.0-2.8.4 - Improper Authentication via Uncleaned User Tokens
Oct 16, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-22649 HIGH
Rancher 2.6.0-2.6.13 and 2.7.0-2.7.9 - Sensitive Data Exposure in Audit Logs
Oct 16, 2024
CVSS 8.4
EPSS 0.02
CVE-2023-22644 MEDIUM
NeuVector - Forged JWT Token Remote Code Execution
Sep 20, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-32182 MEDIUM
openSUSE Leap 15.5 - Improper Link Resolution Before File Access in postfix
Sep 19, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-32186 HIGH
SUSE RKE2 DoS via K3s API Server Port
Sep 19, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22648 HIGH
SUSE Rancher >=2.6.7-<2.6.13, >=2.7.0 - Privilege Escalation
Jun 01, 2023
CVSS 8.0
EPSS 0.00