Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate a new secret key when the service starts, which allows remote attackers to defeat intended cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell SUSE Lifecycle Management Server 安全漏洞
Vulnerability Description
Novell SUSE Studio是美国Novell公司的一套用于在Web浏览器中构建和测试软件应用程序的Web应用程序。SUSE Lifecycle Management Server(SLMS)是其中的一个为软件应用程序映像或设备提供更新和维护的工具。 SLMS 1.3.7之前的版本中存在安全漏洞,该漏洞源于当服务启动时,程序没有生成新的密钥。远程攻击者可借助已知的密钥利用该漏洞绕过既定的密码保护机制。
CVSS Information
N/A
Vulnerability Type
N/A