Every CVE whose affected-product data names Novell Suse Linux, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2010-3912 — CVSS 10.0 (critical): The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files…
CVE-2024-12084 — CVSS 9.8 (critical): A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum…
CVE-2013-4854 — CVSS 7.8 (high): The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco…
CVE-2007-1285 — CVSS 7.5 (high): The Zend Engine in PHP 4.x before 4.4.7, and 5.x before 5.2.2, allows remote attackers to cause a denial of service (stack exhaustion and…
CVE-2010-3110 — CVSS 7.2 (high): Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow…
CVE-2005-4790 — CVSS 6.9 (medium): Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0, and possibly other distributions, cause the working directory to…
CVE-2024-12088 — CVSS 6.5 (medium): A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination…
CVE-2010-1507 — CVSS 5.0 (medium): WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the WebYaST appliance uses a fixed secret key that is embedded in the…
CVE-2006-0803 — CVSS 5.0 (medium): The signature verification functionality in the YaST Online Update (YOU) script handling relies on a gpg feature that is not intended for…
CVE-2007-4432 — CVSS 4.6 (medium): Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remover…
CVE-2005-3321 — CVSS 4.6 (medium): chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a…
CVE-2009-1297 — CVSS 4.4 (medium): iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating…
CVE-2011-0988 — CVSS 4.4 (medium): pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running OES Netware…
CVE-2015-2567 — CVSS 3.5 (low): Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown…
CVE-2015-2566 — CVSS 2.8 (low): Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via vectors…
CVE-2007-4394 — CVSS 2.1 (low): Unspecified vulnerability in a "core clean" cron job created by the findutils-locate package on SUSE Linux 10.0 and 10.1 and Enterprise…
CVE-2005-4791 — CVSS 2.1 (low): Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might…