CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 4:21 a.m.•2 views

SUSE CVE-2018-20105

A Inclusion of Sensitive Information in Log Files vulnerability in yast2-rmt of SUSE Linux Enterprise Server 15; openSUSE Leap allows local attackers to learn the password if they can access the log file. This issue affects: SUSE Linux Enterprise Server 15 yast2-rmt versions prior to 1.2.2...

4.4CVSS6.6AI score0.00143EPSS

Exploits0References8

OpenVAS•added 2021/06/09 12:0 a.m.•13 views

SUSE: Security Advisory (SUSE-SU-2020:0578-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00143EPSS

OpenVAS•added 2021/06/09 12:0 a.m.•18 views

SUSE: Security Advisory (SUSE-SU-2019:0629-1)

5.5CVSS5.6AI score0.00143EPSS

OpenVAS•added 2021/06/09 12:0 a.m.•13 views

SUSE: Security Advisory (SUSE-SU-2018:4209-1)

7.8CVSS7.8AI score0.00044EPSS

OpenVAS•added 2020/03/09 12:0 a.m.•19 views

openSUSE: Security Advisory for yast2-rmt (openSUSE-SU-2020:0320-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE Linux•added 2020/03/09 12:0 a.m.•102 views

Security update for yast2-rmt (moderate)

openSUSE Security Update: Security update for yast2-rmt Announcement ID: openSUSE-SU-2020:0320-1 Rating: moderate References: 1119835 1146403 Cross-References: CVE-2018-20105 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...

5.5CVSS6.1AI score0.00143EPSS

Tenable Nessus•added 2020/03/09 12:0 a.m.•35 views

openSUSE Security Update : yast2-rmt (openSUSE-2020-320)

This update for yast2-rmt to version 1.3.0 fixes the following issues : Security issue fixed : - CVE-2018-20105: Fixed an exposure of the CA private key passphrase in the log file bsc1119835. Non-security issue fixed : - Add support for forwarding registration data from RMT to SCC This update was...

5.5CVSS5.8AI score0.00143EPSS

OSV•added 2020/03/08 7:12 p.m.•2 views

OPENSUSE-SU-2020:0320-1 Security update for yast2-rmt

This update for yast2-rmt to version 1.3.0 fixes the following issues: Security issue fixed: - CVE-2018-20105: Fixed an exposure of the CA private key passphrase in the log file bsc1119835. Non-security issue fixed: - Add support for forwarding registration data from RMT to SCC This update was...

5.5CVSS4.8AI score0.00143EPSS

Exploits0References4

OSV•added 2020/03/03 2:25 p.m.•5 views

SUSE-SU-2020:0578-1 Security update for yast2-rmt

This update for yast2-rmt to version 1.3.0 fixes the following issues: Security issue fixed: - CVE-2018-20105: Fixed an exposure of the CA private key passphrase in the log file bsc1119835. Non-security issue fixed: - Add support for forwarding registration data from RMT to SCC...

5.5CVSS5.5AI score0.00143EPSS

Exploits0References4

Tenable Nessus•added 2020/02/28 12:0 a.m.•23 views

openSUSE Security Update : yast2-rmt (openSUSE-2020-253)

This update for yast2-rmt fixes the following issues : yast2-rmt was updated to release version 1.2.2 : - CVE-2018-20105: Pass SSL password to Cheetah CLI interface securely boo1119835 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

5.5CVSS5.8AI score0.00143EPSS

OpenVAS•added 2020/02/28 12:0 a.m.•20 views

openSUSE: Security Advisory for yast2-rmt (openSUSE-SU-2020:0253-1)

OSV•added 2020/02/27 1:18 p.m.•5 views

OPENSUSE-SU-2020:0253-1 Security update for yast2-rmt

This update for yast2-rmt fixes the following issues: yast2-rmt was updated to release version 1.2.2: - CVE-2018-20105: Pass SSL password to Cheetah CLI interface securely boo1119835...

OPENSUSE Linux•added 2020/02/27 12:0 a.m.•51 views

Security update for yast2-rmt (moderate)

openSUSE Security Update: Security update for yast2-rmt Announcement ID: openSUSE-SU-2020:0253-1 Rating: moderate References: 1119835 Cross-References: CVE-2018-20105 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

5.5CVSS6.1AI score0.00143EPSS

Exploits0References1

NVD•added 2020/01/27 9:15 a.m.•21 views

CVE-2018-20105

5.5CVSS4.6AI score0.00143EPSS

OSV•added 2020/01/27 9:15 a.m.•2 views

CVE-2018-20105

5.5CVSS5.5AI score0.00143EPSS

CVE•added 2020/01/27 8:50 a.m.•158 views

CVE-2018-20105

The related OpenSUSE/SUSE entries confirm CVE-2018-20105 affects yast2-rmt and was fixed by updating to yast2-rmt 1.3.0 (openSUSE-2020-320, SUSE-SU-2020:0578-1). The mitigation is to apply this update; the fix addresses an exposure of the CA private key passphrase contained in log files. Summary ...

5.5CVSS4.5AI score0.00143EPSS

Exploits0References3Affected Software1

Cvelist•added 2020/01/27 8:50 a.m.•20 views

CVE-2018-20105 yast2-rmt exposes CA private key passhrase in log-file

4CVSS5.1AI score0.00143EPSS

OpenVAS•added 2019/04/03 12:0 a.m.•22 views

openSUSE: Security Advisory for yast2-rmt (openSUSE-SU-2019:1089-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...