55 matches found
The vulnerability in the Hawk2 web interface of SUSE Linux Enterprise Server and OpenSUSE Leap allows a malicious individual to escalate their privileges.
The vulnerability in the Hawk2 web interface of SUSE Linux Enterprise Server and OpenSUSE Leap involves the creation of temporary files with insecure permissions. Exploiting this vulnerability can allow attackers to increase their privileges...
openSUSE: Security Advisory for hawk2 (openSUSE-SU-2021:0074-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for hawk2 (openSUSE-SU-2021:0054-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for hawk2 (openSUSE-SU-2021:0144-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for hawk2 (openSUSE-SU-2021:0473-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for hawk2 (openSUSE-SU-2021:0147-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-25314
A Creation of Temporary File With Insecure Permissions vulnerability in hawk2 of SUSE Linux Enterprise High Availability 12-SP3, SUSE Linux Enterprise High Availability 12-SP5, SUSE Linux Enterprise High Availability 15-SP2 allows local attackers to escalate to root. This issue affects: SUSE Linu...
CVE-2021-25314 hawk: Insecure file permissions
A Creation of Temporary File With Insecure Permissions vulnerability in hawk2 of SUSE Linux Enterprise High Availability 12-SP3, SUSE Linux Enterprise High Availability 12-SP5, SUSE Linux Enterprise High Availability 15-SP2 allows local attackers to escalate to root. This issue affects: SUSE Linu...
openSUSE Security Update : hawk2 (openSUSE-2021-473)
This update for hawk2 fixes the following issues : - Update to version 2.6.3 : - Remove hawkinvoke and use capture3 instead of runas bsc1179999CVE-2020-35459 - Remove unnecessary chmod bsc1182166CVE-2021-25314 - Sanitize filename to contains whitelist of alphanumeric bsc1182165 This update was...
OPENSUSE-SU-2021:0473-1 Security update for hawk2
This update for hawk2 fixes the following issues: - Update to version 2.6.3: Remove hawkinvoke and use capture3 instead of runas bsc1179999CVE-2020-35459 Remove unnecessary chmod bsc1182166CVE-2021-25314 Sanitize filename to contains whitelist of alphanumeric bsc1182165 This update was imported...
Security update for hawk2 (important)
openSUSE Security Update: Security update for hawk2 Announcement ID: openSUSE-SU-2021:0473-1 Rating: important References: 1179999 1182165 1182166 Cross-References: CVE-2020-35459 CVE-2021-25314 CVSS scores: CVE-2020-35459 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2020-35459 SUSE...
SUSE-SU-2021:0943-1 Security update for hawk2
This update for hawk2 fixes the following issues: - Update to version 2.6.3: Remove hawkinvoke and use capture3 instead of runas bsc1179999CVE-2020-35459 Remove unnecessary chmod bsc1182166CVE-2021-25314 Sanitize filename to contains whitelist of alphanumeric bsc1182165...
SUSE-SU-2021:0942-1 Security update for hawk2
This update for hawk2 fixes the following issues: - Update to version 2.6.3: Remove hawkinvoke and use capture3 instead of runas bsc1179999CVE-2020-35459 Remove unnecessary chmod bsc1182166CVE-2021-25314 Sanitize filename to contains whitelist of alphanumeric bsc1182165...
SUSE-SU-2021:0941-1 Security update for hawk2
This update for hawk2 fixes the following issues: - Update to version 2.6.3: Remove hawkinvoke and use capture3 instead of runas bsc1179999CVE-2020-35459 Remove unnecessary chmod bsc1182166CVE-2021-25314 Sanitize filename to contains whitelist of alphanumeric bsc1182165...
openSUSE Security Update : hawk2 (openSUSE-2021-74)
This update for hawk2 fixes the following security issue : - CVE-2020-35458: Fixed an insufficient input handler that could have led to remote code execution bsc1179998. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and...
openSUSE Security Update : hawk2 (openSUSE-2021-147)
This update for hawk2 fixes the following issues : hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed : - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project. C...
openSUSE Security Update : hawk2 (openSUSE-2021-54)
This update for hawk2 fixes the following security issue : - CVE-2020-35458: Fixed an insufficient input handler that could have led to remote code execution bsc1179998. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and...
openSUSE Security Update : hawk2 (openSUSE-2021-144)
This update for hawk2 fixes the following issues : hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed : - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project. C...
OPENSUSE-SU-2021:0147-1 Security update for hawk2
This update for hawk2 fixes the following issues: hawk2 was updated to version 2.4.0+git.1611141202.2fe6369e. Security issue fixed: - Fixed another possible code execution vulnerability in the controller code bsc1179998. This update was imported from the SUSE:SLE-15:Update update project...
Security update for hawk2 (critical)
openSUSE Security Update: Security update for hawk2 Announcement ID: openSUSE-SU-2021:0147-1 Rating: critical References: 1179998 Cross-References: CVE-2020-35458 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for hawk2 fixe...