himmelblau (SUSE:Linux Enterprise Module for Basesystem 15 SP7) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP7 package himmelblau, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (9)
CVE-2026-31979 — CVSS 8.8 (high): Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Prior to 3.1.0 and 2.3.8, the himmelblaud-tasks daemon…
CVE-2025-5791 — CVSS 7.1 (high): A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user or…
CVE-2025-54882 — CVSS 7.1 (high): Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through…
CVE-2026-25727 — CVSS 6.5 (medium): time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses…
CVE-2026-34397 — CVSS 6.3 (medium): Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From versions 2.0.0-alpha to before 2.3.9 and 3.0.0-alpha…
CVE-2024-11738 — CVSS 5.3 (medium): A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello…
CVE-2025-53013 — CVSS 5.2 (medium): Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. A vulnerability present in versions 0.9.10 through 0.9.16…
CVE-2025-3416 — CVSS 3.7 (low): A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free…
CVE-2025-58160: tracing is a framework for instrumenting Rust programs to collect structured, event-based diagnostic information. Prior to version 0.3.20…