Lucene search

CVE-2022-43753

🗓️ 10 Nov 2022 15:19:15Reported by suseType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 49 Views

CVE-2022-43753: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spacewalk/Uyuni of SUSE Linu

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Oracle linux	spacewalk-backend spacewalk-java security update	5 Dec 202200:00	–	oraclelinux
NVD	CVE-2022-43753	10 Nov 202215:15	–	nvd
Tenable Nessus	Oracle Linux 7 : spacewalk-backend / spacewalk-java (ELSA-2022-10024)	5 Dec 202200:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : spacewalk-java (SUSE-SU-2022:3880-1)	29 Jun 202300:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : release-notes-susemanager, release-notes-susemanager-proxy (SUSE-SU-2022:3879-1)	29 Jun 202300:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : SUSE Manager Server 4.2 (SUSE-SU-2022:3878-1)	29 Jun 202300:00	–	nessus
Cvelist	CVE-2022-43753 SUMA/UYUNI arbitrary file disclosure vulnerability in ScapResultDownload	10 Nov 202207:30	–	cvelist
Prion	Path traversal	10 Nov 202215:15	–	prion

Nvd

Node

suse manager_serverRange4.2–4.2.10

suse manager_serverRange4.3–4.3.2

uyuni-project uyuniRange<2022.10

[
  {
    "vendor": "SUSE",
    "product": "SUSE Linux Enterprise Module for SUSE Manager Server 4.2",
    "versions": [
      {
        "version": "hub-xmlrpc-api-0.7-150300.3.9.2, inter-server-sync-0.2.4-150300.8.25.2, locale-formula-0.3-150300.3.3.2, py27-compat-salt-3000.3-150300.7.7.26.2, python-urlgrabber-3.10.2.1py2_3-150300.3.3.2, spacecmd-4.2.20-150300.4.30.2, spacewalk-backend-4.2.25-150300.4.32.4, spacewalk-client-tools-4.2.21-150300.4.27.3, spacewalk-java-4.2.43-150300.3.48.2, spacewalk-utils-4.2.18-150300.3.21.2, spacewalk-web-4.2.30-150300.3.30.3, susemanager-4.2.38-150300.3.44.3, susemanager-doc-indexes-4.2-150300.12.36.3, susemanager-docs_en-4.2-150300.12.36.2, susemanager-schema-4.2.25-150300.3.30.3, susemanager-sls",
        "status": "affected",
        "lessThan": "4.2.28",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "SUSE",
    "product": "SUSE Linux Enterprise Module for SUSE Manager Server 4.3",
    "versions": [
      {
        "version": "spacewalk-java",
        "status": "affected",
        "lessThan": "4.3.39",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "SUSE",
    "product": "SUSE Manager Server 4.2",
    "versions": [
      {
        "version": "release-notes-susemanager",
        "status": "affected",
        "lessThan": "4.2.10",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.suse.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Nov 2022 15:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.00063

CWE-22