SUSE Linux Enterprise Server 12 — Vulnerabilities & Security Advisories 9

All 9 CVE vulnerabilities found in SUSE Linux Enterprise Server 12, with AI-generated Chinese analysis, references, and POCs.

Vendor: SUSE

CVE ID	Title	CVSS	Severity	Paused
CVE-2022-45154	supportconfig does not remove passwords in /etc/iscsi/iscsid.conf and /etc/target/lio_setup.sh CWE-312	4.4	Medium	2023-02-15
CVE-2019-18905	Deprecated functionality in autoyast2 automatically imports gpg keys without checking them CWE-345	4.8	Medium	2020-04-03
CVE-2019-18903	wicked: Use-after-free when receiving invalid DHCP6 IA_PD option CWE-416	7.5	High	2020-03-02
CVE-2019-18902	wicked: Use-after-free when receiving invalid DHCP6 client options CWE-416	7.5	High	2020-03-02
CVE-2020-8013	permissions: chkstat sets unintended setuid/capabilities for mrsh and wodim CWE-59	2.2	Low	2020-03-02
CVE-2019-18901	mysql-systemd-helper allows setting 640 permissions of arbitrary files CWE-59	5.1	Medium	2020-03-02
CVE-2019-18897	Local privilege escalation from user salt to root CWE-59	8.4	High	2020-03-02
CVE-2019-3698	nagios cron job allows privilege escalation from user nagios to root CWE-59	5.7	Medium	2020-02-28
CVE-2019-3689	nfs-utils: root-owned files stored in insecure /var/lib/nfs directory CWE-276	5.1	Medium	2019-09-19

All 9 known CVE vulnerabilities affecting SUSE Linux Enterprise Server 12 with full Chinese analysis, references, and POCs where available.