CVE-2023-32182
MEDIUMopenSUSE Leap 15.5 - Improper Link Resolution Before File Access in postfix
Title source: llmDescription
A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 postfix, SUSE openSUSE Leap 15.5 postfix.This issue affects SUSE Linux Enterprise Desktop 15 SP5: before 3.7.3-150500.3.5.1; SUSE Linux Enterprise High Performance Computing 15 SP5: before 3.7.3-150500.3.5.1; openSUSE Leap 15.5 : before 3.7.3-150500.3.5.1.
References (1)
Core 1
Core References
Exploit, Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32182
Scores
CVSS v3
5.9
EPSS
0.0002
EPSS Percentile
6.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-59
Status
published
Products (3)
opensuse/leap
15.5
suse/linux_enterprise_high_performance_computing
15.0 sp5
suse/suse_linux_enterprise_desktop
15 sp5
Published
Sep 19, 2023
Tracked Since
Feb 18, 2026