Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP4 package amanda, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2023-30577 — CVSS 7.8 (high): AMANDA (Advanced Maryland Automatic Network Disk Archiver) before tag-community-3.5.4 mishandles argument checking for runtar.c, a…
CVE-2022-37704 — CVSS 6.7 (medium): Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary located at /lib/amanda/rundump will execute…
CVE-2022-37705 — CVSS 6.7 (medium): A privilege escalation flaw was found in Amanda 3.5.1 in which the backup user can acquire root privileges. The vulnerable component is the…