| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2015-0796 | open build service source server symlink exploitation via source patch | SUSE | open build service | 高危 | - | 2018-03-02 20:00:00 | Deep Dive |
| CVE-2017-14798 | local privilege escalation in SUSE postgresql init script | suse | postgresql-init | 高危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-14804 | package builds could use directory traversal to write outside of target area | SUSE | build | 中危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-7435 | libzypp accepts unsigned 3rd party repo without warning | SUSE | libzypp | 高危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-7436 | libzypp accepts unsigned packages even when configured to check signatures | SUSE | libzypp | 高危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9268 | open-build-service retrigger / wipebinaries hitting the wrong project bypassing access permissions | SUSE | open build service | 中危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9269 | lack of keypinning in libzypp could lead to repository switching | SUSE | libzypp | 超危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9270 | post-auth arbitrary file write on cryptctl server | SUSE | cryptctl | 超危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9271 | proxy credentials written to log files by zypper | SUSE | zypper | 低危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9274 | osc executes spec code during "osc commit" | SUSE | obs-service-source_validator | 高危 | - | 2018-03-01 19:00:00 | Deep Dive |
| CVE-2017-9286 | nextcloud package security issues with /srv/www/htdocs | SUSE | nextcloud | 高危 | - | 2018-03-01 19:00:00 | Deep Dive |