Lucene search
+L

6 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-21949

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certa...

9CVSS7.3AI score0.01735EPSS
Exploits0References3
nvd
nvd
added 2022/05/03 8:15 a.m.27 views

CVE-2022-21949

A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certain operations. This can be used to gain information from the server that can be abused to escalate to Admin privileges on OBS. This issue...

9CVSS0.01735EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2022/05/03 8:15 a.m.35 views

CVE-2022-21949

A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certain operations. This can be used to gain information from the server that can be abused to escalate to Admin privileges on OBS. This issue...

9CVSS7.2AI score0.01735EPSS
Exploits0References3
cve
cve
added 2022/05/03 7:50 a.m.84 views

CVE-2022-21949

CVE-2022-21949 describes an XXE vulnerability in SUSE Open Build Service (OBS) prior to version 2.10.13. The issue allows remote attackers to reference external entities during certain operations, enabling information disclosure and potential escalation to Admin privileges on OBS. Affected produc...

9CVSS8.9AI score0.01735EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/05/03 7:50 a.m.31 views

CVE-2022-21949 Multiple XXE vulnerabilities in OBS

A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certain operations. This can be used to gain information from the server that can be abused to escalate to Admin privileges on OBS. This issue...

8.8CVSS9.1AI score0.01735EPSS
Exploits0References1
debiancve
debiancve
added 2022/05/03 7:50 a.m.65 views

CVE-2022-21949

A Improper Restriction of XML External Entity Reference vulnerability in SUSE Open Build Service allows remote attackers to reference external entities in certain operations. This can be used to gain information from the server that can be abused to escalate to Admin privileges on OBS. This issue...

9CVSS8.9AI score0.01735EPSS
Exploits0
Rows per page
Query Builder