rsyslog (SUSE:Linux Enterprise Server 12 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP3 package rsyslog, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2018-16881 — CVSS 7.5 (high): A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the…
CVE-2015-3243 — CVSS 5.5 (medium): rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in…