| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2019-3681 | osc: stores downloaded (supposed) RPM in network-controlled filesystem paths | SUSE | SUSE Linux Enterprise Module for Development Tools 15 | High | 7.5 | 2020-06-29 12:00:17 | Deep Dive |
| CVE-2020-8019 | syslog-ng: Local privilege escalation from new to root in %post | SUSE | SUSE Linux Enterprise Debuginfo 11-SP3 | High | 7.7 | 2020-06-29 11:30:14 | Deep Dive |
| CVE-2020-8022 | User-writeable configuration file /usr/lib/tmpfiles.d/tomcat.conf allows for escalation of priviliges | SUSE | SUSE Enterprise Storage 5 | High | 7.7 | 2020-06-29 08:20:13 | Deep Dive |
| CVE-2020-7267 | Privilege Escalation vulnerability through symbolic links in VSEL | McAfee,LLC | McAfee VirusScan Enterprise (VSE) for Linux | High | 8.8 | 2020-05-08 12:25:15 | Deep Dive |
| CVE-2020-8018 | User owned /etc in SLES15-SP1-CHOST-BYOS | SUSE | SUSE Linux Enterprise Server 15 SP1 | High | 8.4 | 2020-05-04 11:35:12 | Deep Dive |
| CVE-2019-18905 | Deprecated functionality in autoyast2 automatically imports gpg keys without checking them | SUSE | SUSE Linux Enterprise Server 12 | Medium | 4.8 | 2020-04-03 11:00:17 | Deep Dive |
| CVE-2019-18904 | Migrations requests can cause DoS on rmt | SUSE | SUSE Linux Enterprise High Performance Computing 15-ESPOS | Medium | 6.5 | 2020-04-03 07:10:13 | Deep Dive |
| CVE-2020-8017 | race condition on texlive-filesystem cron job allows for the deletion of unintended files | SUSE | SUSE Linux Enterprise Module for Desktop Applications 15-SP1 | Medium | 6.2 | 2020-04-02 14:05:19 | Deep Dive |
| CVE-2020-8016 | race condition in the packaging of texlive-filesysten | SUSE | SUSE Linux Enterprise Module for Desktop Applications 15-SP1 | Medium | 4.9 | 2020-04-02 14:05:18 | Deep Dive |
| CVE-2019-3696 | pcp: Local privilege escalation from user pcp to root through migrate_tempdirs | SUSE | SUSE Linux Enterprise High Performance Computing 15-ESPOS | High | 8.4 | 2020-03-03 11:05:19 | Deep Dive |
| CVE-2019-3695 | pcp: Local privilege escalation from user pcp to root | SUSE | SUSE Linux Enterprise High Performance Computing 15-ESPOS | High | 8.4 | 2020-03-03 11:05:18 | Deep Dive |
| CVE-2019-18903 | wicked: Use-after-free when receiving invalid DHCP6 IA_PD option | SUSE | SUSE Linux Enterprise Server 12 | High | 7.5 | 2020-03-02 16:45:19 | Deep Dive |
| CVE-2019-18902 | wicked: Use-after-free when receiving invalid DHCP6 client options | SUSE | SUSE Linux Enterprise Server 12 | High | 7.5 | 2020-03-02 16:45:18 | Deep Dive |
| CVE-2020-8013 | permissions: chkstat sets unintended setuid/capabilities for mrsh and wodim | SUSE | SUSE Linux Enterprise Server 12 | Low | 2.2 | 2020-03-02 16:35:13 | Deep Dive |
| CVE-2019-18901 | mysql-systemd-helper allows setting 640 permissions of arbitrary files | SUSE | SUSE Linux Enterprise Server 12 | Medium | 5.1 | 2020-03-02 16:10:14 | Deep Dive |
| CVE-2019-18897 | Local privilege escalation from user salt to root | SUSE | SUSE Linux Enterprise Server 12 | High | 8.4 | 2020-03-02 15:20:27 | Deep Dive |
| CVE-2019-3698 | nagios cron job allows privilege escalation from user nagios to root | SUSE | SUSE Linux Enterprise Server 12 | Medium | 5.7 | 2020-02-28 13:20:14 | Deep Dive |
| CVE-2018-20105 | yast2-rmt exposes CA private key passhrase in log-file | SUSE | SUSE Linux Enterprise Server 15 | Medium | 4.0 | 2020-01-27 08:50:13 | Deep Dive |
| CVE-2018-12476 | obs-service-extract_file's outfilename parameter allows to write files outside of package directory | SUSE | SUSE Linux Enterprise Server 15 | Medium | 4.3 | 2020-01-27 08:30:15 | Deep Dive |
| CVE-2019-18900 | libzypp stores cookies world readable | SUSE | CaaS Platform 3.0 | Medium | 4.0 | 2020-01-24 15:15:16 | Deep Dive |