1631 matches found
SUSE SLED15 / SLES15 Security Update : sendmail (SUSE-SU-2022:3899-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3899-1 advisory. - A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail syste...
SUSE SLES12 Security Update : sendmail (SUSE-SU-2022:3898-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3898-1 advisory. - A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUS...
SUSE-SU-2022:3899-1 Security update for sendmail
This update for sendmail fixes the following issues: - CVE-2022-31256: Fixed mail to root privilege escalation via sm-client.pre script bsc1204696, bsc1202937...
SUSE-SU-2022:3898-1 Security update for sendmail
This update for sendmail fixes the following issues: - CVE-2022-31256: Fixed mail to root privilege escalation via sm-client.pre script bsc1204696, bsc1202937...
CVE-2022-31256
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
CVE-2022-31256
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
Input validation
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
CVE-2022-31256 sendmail: mail to root privilege escalation via sm-client.pre script
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
CVE-2022-31256 sendmail: mail to root privilege escalation via sm-client.pre script
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
CVE-2022-31256
CVE-2022-31256 is a local privilege-escalation issue in the openSUSE/openSUSE Factory sendmail workflow. Affected component: a script invoked by the sendmail systemd service. Root cause: improper link resolution before file access ("link following") in that script allows a local attacker to escal...
CVE-2022-31256
A Improper Link Resolution Before File Access 'Link Following' vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1...
systemd 后置链接漏洞
systemd is a Linux-based system and service manager from the individual developer Lennart Poettering in Germany. The product is compatible with SysV and LSB startup scripts and provides a framework for representing dependencies between system services. A backlink vulnerability exists in systemd...
PT-2022-20643 · Sendmail +1 · Sendmail +1
Name of the Vulnerable Software and Affected Versions: openSUSE Factory sendmail versions prior to 8.17.1-1.1 Description: A local attacker can exploit an Improper Link Resolution Before File Access issue, also known as 'Link Following', in a script used by the sendmail systemd service to escalat...
Remote Code Execution (RCE)
foreman is vulnerable to remote code execution. An authenticated attacker could use Sendmail configuration options to overwrite the defaults and perform command injection...
SUSE: Security Advisory (SUSE-SU-2022:3529-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : sendmail (SUSE-SU-2022:3529-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3529-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...
SUSE-SU-2022:3529-1 Security update for sendmail
This update for sendmail fixes the following issues: - Fixed SMTP session reuse leading to STARTTLS not used even if offered bsc1164084...
PT-2022-37523 · Sendmail · Sendmail
Name of the Vulnerable Software and Affected Versions: sendmail affected versions not specified Description: The issue is related to SMTP session reuse, which can lead to STARTTLS not being used even if it is offered. Recommendations: At the moment, there is no information about a newer version...
Fedora: Security Advisory for exim (FEDORA-2022-1ca1d22165)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Eyes Of Network (EON) <= 5.3 RCE Vulnerability
Eyes Of Network EON is prone to a remote code execution RCE vulnerability on the mail options configuration page. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...