2 matches found
SUSE CVE-2018-1327
The Apache Struts REST Plugin is using XStream library which is vulnerable and allow perform a DoS attack when using a malicious request with specially crafted XML payload. Upgrade to the Apache Struts version 2.5.16 and switch to an optional Jackson XML handler as described here...
PT-2022-4760 · Suse · Suse Rancher
Name of the Vulnerable Software and Affected Versions: SUSE Rancher versions prior to 2.5.16 SUSE Rancher versions prior to 2.6.7 Description: The issue is related to the cleartext storage of sensitive information in SUSE Rancher, allowing authenticated users to retrieve plaintext versions of...