gpg2 (SUSE:Linux Enterprise Server 12 SP2-BCL) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP2-BCL package gpg2, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2018-12020 — CVSS 7.5 (high): mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers…
CVE-2022-34903 — CVSS 6.5 (medium): GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other…