CVE-2010-3912
SUSE Linux Enterprise 10 SP3 and 11 SP1 - Password Exposure in supportconfig Script
Title source: llmDescription
The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.
References (5)
Core 5
Core References
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64690
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42877
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/70405
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0076
Scores
EPSS
0.0025
EPSS Percentile
48.1%
Details
CWE
CWE-255
Status
published
Products (2)
novell/suse_linux
10 sp3
novell/suse_linux
11 sp1
Published
Jan 13, 2011
Tracked Since
Feb 18, 2026