Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•15 views

SUSE CVE-2026-43860

mutt before 2.3.2 sometimes truncates the hashpasswd by one byte for IMAP authcram MD5 digest...

4.8CVSS5.8AI score0.00162EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/05/02 1:25 a.m.•15 views

SUSE CVE-2026-31704

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has many POSIX ACL entries, the accumulated size can wrap past 65535, causin...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/02 1:25 a.m.•15 views

SUSE CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS5.8AI score0.00542EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•15 views

SUSE CVE-2026-31638

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpcinputpacketonconn can process a to-client packet after the current client call on the channel has already been torn down. In that case chan-call is NULL, rxrpctrygetcall retur...

7.5CVSS5.5AI score0.00441EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/22 1:37 a.m.•15 views

SUSE CVE-2026-34839

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Glances web server exposes a REST API /api/4/ that is accessible without authentication and allows cross-origin requests from any origin due to a permissive CORS policy Access-Control-Allow-Origin: . This...

8.7CVSS5.8AI score0.00408EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/17 12:32 p.m.•15 views

SUSE CVE-2003-0354

Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job...

7.5CVSS6.1AI score0.0187EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/14 11:30 p.m.•15 views

SUSE CVE-2026-4786

Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open" API could have commands injected into the underlying shell. See CVE-2026-4519 for details...

7.1CVSS5.8AI score0.0029EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2026/04/11 11:26 p.m.•15 views

SUSE CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/07 11:26 p.m.•15 views

SUSE CVE-2026-31790

Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key can send contents of an uninitialized memory buffer to a malicious peer. Impact summary: The uninitialized buffer might contain sensitive data from the previous execution of the application process whi...

6.5CVSS6.1AI score0.00981EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/04/03 11:24 p.m.•15 views

SUSE CVE-2026-34830

Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Sendfilemapaccelpath interpolates the value of the X-Accel-Mapping request header directly into a regular expression when rewriting file paths for X-Accel-Redirect. Because the header value is not...

5.9CVSS5.8AI score0.00209EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/03/28 12:25 a.m.•15 views

SUSE CVE-2026-33505

Ory Keto is am open source authorization server for managing permissions at scale. Prior to version 26.2.0, the GetRelationships API in Ory Keto is vulnerable to SQL injection due to flaws in its pagination implementation. Pagination tokens are encrypted using the secret configured in...

7.2CVSS6.2AI score0.00229EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 11:53 a.m.•15 views

SUSE CVE-2026-4647

A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and executables. The issue occurs when processing specially crafted XCOFF object files, where a relocation type value is not properly validated before being used. This can caus...

6.1CVSS5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 11:53 a.m.•15 views

SUSE CVE-2026-4709

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

6.3CVSS7.2AI score0.00463EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/03/25 12:24 a.m.•15 views

SUSE CVE-2026-31866

flagd is a feature flag daemon with a Unix philosophy. Prior to 0.14.2, flagd exposes OFREP /ofrep/v1/evaluate/... and gRPC evaluation.v1, evaluation.v2 endpoints for feature flag evaluation. These endpoints are designed to be publicly accessible by client applications. The evaluation context...

7.5CVSS7AI score0.0042EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/17 12:24 a.m.•15 views

SUSE CVE-2026-23117

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/07 12:24 a.m.•15 views

SUSE CVE-2026-24514

A security issue was discovered in ingress-nginx where the validating admission controller feature is subject to a denial of service condition. By sending large requests to the validating admission controller, an attacker can cause memory consumption, which may result in the ingress-nginx...

6.5CVSS5.4AI score0.0046EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/01 12:23 a.m.•15 views

SUSE CVE-2026-23022

In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leak in idpfvccoredeinit Make sure to free hw-lanregs. Reported by kmemleak during reset: unreferenced object 0xff1b913d02a936c0 size 96: comm "kworker/u258:14", pid 2174, jiffies 4294958305 hex dump first 32...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/01/26 12:24 a.m.•15 views

SUSE CVE-2026-22998

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec Commit efa56305908b "nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length" added ttag bounds checking and dataoffset validation in...

5.5CVSS5.3AI score0.0071EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2026/01/19 12:23 a.m.•15 views

SUSE CVE-2025-71115

In the Linux kernel, the following vulnerability has been resolved: um: init cputasks earlier This is currently done in umlfinishsetup, but e.g. with KCOV enabled we'll crash because some init code can call into e.g. memparse, which has coverage annotations, and then the checks in checkkcovmode...

5.5CVSS6.7AI score0.00108EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:32 a.m.•15 views

SUSE CVE-2025-14273

Mattermost versions 11.1.x = 11.1.0, 11.0.x = 11.0.5, 10.12.x = 10.12.3, 10.11.x = 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions =4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows ...

8.3CVSS7.1AI score0.00227EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:36 a.m.•15 views

SUSE CVE-2017-18890

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows an attacker to create a button that, when pressed by a user, launches an API request...

4.3CVSS4.8AI score0.0077EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2025/12/31 12:32 a.m.•15 views

SUSE CVE-2022-50817

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skbclone syzbot got a crash 1 in skbclone, caused by a bug in hsrgetuntaggedframe. When/if createstrippedskbhsr returns NULL, we must not attempt to call skbclone. While we are at it, replac...

5.3CVSS6.4AI score0.002EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/31 12:32 a.m.•15 views

SUSE CVE-2022-50820

In the Linux kernel, the following vulnerability has been resolved: perf/armdmc620: Fix hotplug callback leak in dmc620pmuinit dmc620pmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simil...

5.5CVSS6.5AI score0.002EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/31 12:31 a.m.•15 views

SUSE CVE-2022-50830

In the Linux kernel, the following vulnerability has been resolved: auxdisplay: hd44780: Fix potential memory leak in hd44780remove hd44780probe allocates a memory chunk for hd with kzalloc and makes "lcd-drvdata-hd44780" point to it. When we call hd44780remove, we should release all relevant...

5.5CVSS6.4AI score0.00206EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/30 12:23 a.m.•15 views

SUSE CVE-2025-68920

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

8.9CVSS6.9AI score0.00373EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 1:5 a.m.•15 views

SUSE CVE-2022-50697

In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The caller of deltimersync must prevent restarting of the timer, If we have no this synchronization, there is a small probability that the cancellation will not be...

7CVSS6.5AI score0.00196EPSS
Exploits0References30
SUSE CVE
SUSE CVE
•added 2025/12/25 1:4 a.m.•15 views

SUSE CVE-2022-50739

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add null pointer check for inode operations This adds a sanity check for the iop pointer of the inode which is returned after reading Root directory MFT record. We should check the iop is valid before trying to create t...

6.2AI score0.002EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 1:4 a.m.•15 views

SUSE CVE-2022-50741

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Disable useless interrupt to avoid kernel panic There is a hardware bug that the interrupt STMBUFHALF may be triggered after or when disable interrupt. It may led to unexpected kernel panic. And interrupt...

6.5AI score0.002EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:29 a.m.•15 views

SUSE CVE-2023-53761

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a user submits an ioctl for a 0-length control transfer, the driver does not check that the direction is...

7CVSS6.4AI score0.00167EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/05 12:45 a.m.•15 views

SUSE CVE-2025-2486

The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based...

8.8CVSS7AI score0.00113EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•15 views

SUSE CVE-2025-38721

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix refcount leak on table dump There is a reference count leak in ctnetlinkdumptable: if res ctgeneral; // HERE cb-args1 = unsigned longct; ... While its very unlikely, its possible that ct == last. If this...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•15 views

SUSE CVE-2025-38728

In the Linux kernel, the following vulnerability has been resolved: smb3: fix for slab out of bounds on mount to ksmbd With KASAN enabled, it is possible to get a slab out of bounds during mount to ksmbd due to missing check in parseserverinterfaces see below: BUG: KASAN: slab-out-of-bounds in...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:23 p.m.•15 views

SUSE CVE-2025-38272

In the Linux kernel, the following vulnerability has been resolved: net: dsa: b53: do not enable EEE on bcm63xx BCM63xx internal switches do not support EEE, but provide multiple RGMII ports where external PHYs may be connected. If one of these PHYs are EEE capable, we may try to enable EEE for t...

5.5CVSS6.6AI score0.00154EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/03 11:23 p.m.•15 views

SUSE CVE-2025-38120

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapoavx2: fix initial map fill If the first field doesn't cover the entire start map, then we must zero out the remainder, else we leak those bits into the next match round map. The early fix was incomplete and...

4.8CVSS6.5AI score0.00156EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•15 views

SUSE CVE-2025-37958

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix dereferencing invalid pmd migration entry When migrating a THP, concurrent access to the PMD migration entry during a deferred split scan can lead to an invalid address access, as illustrated below. To prevent...

5.5CVSS7.8AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•15 views

SUSE CVE-2025-37963

In the Linux kernel, the following vulnerability has been resolved: arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users Support for eBPF programs loaded by unprivileged users is typically disabled. This means only cBPF programs need to be mitigated for BHB. In addition, only...

2.5CVSS6.3AI score0.00158EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/04/02 1:29 p.m.•15 views

SUSE CVE-2025-21903

In the Linux kernel, the following vulnerability has been resolved: mctp i3c: handle NULL header address daddr can be NULL if there is no neighbour table entry present, in that case the tx packet should be dropped. saddr will usually be set by MCTP core, but check for NULL in case a packet is...

5.5CVSS7.8AI score0.00187EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/02/28 2:20 a.m.•15 views

SUSE CVE-2025-21778

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not allow mmap of persistent ring buffer When trying to mmap a trace instance buffer that is attached to reservemem, it would crash: BUG: unable to handle page fault for address: ffffe97bd00025c8 PF: supervisor read...

5.5CVSS6.6AI score0.00191EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2024/10/25 3:6 a.m.•15 views

SUSE CVE-2024-49968

In the Linux kernel, the following vulnerability has been resolved: ext4: filesystems without casefold feature cannot be mounted with siphash When mounting the ext4 filesystem, if the default hash version is set to DXHASHSIPHASH but the casefold feature is not set, exit the mounting...

4.4CVSS7.8AI score0.00244EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2024/03/27 4:25 a.m.•15 views

SUSE CVE-2021-47174

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapoavx2: Add irqfpuusable check, fallback to non-AVX2 version Arturo reported this backtrace: 709732.358791 WARNING: CPU: 3 PID: 456 at arch/x86/kernel/fpu/core.c:128 kernelfpubeginmask+0xae/0xe0 709732.358793...

5.5CVSS7.8AI score0.00232EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2023/02/15 6:14 a.m.•15 views

SUSE CVE-2006-5718

Cross-site scripting XSS vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows remote attackers to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a request with a utf7 charset parameter...

4.3CVSS6AI score0.01612EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2023/02/15 4:18 a.m.•15 views

SUSE CVE-2019-2739

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructu...

5.1CVSS7.1AI score0.0079EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2023/02/15 4:6 a.m.•15 views

SUSE CVE-2019-19082

Memory leaks in createresourcepool functions under drivers/gpu/drm/amd/display/dc in the Linux kernel through 5.3.11 allow attackers to cause a denial of service memory consumption. This affects the dce120createresourcepool function in drivers/gpu/drm/amd/display/dc/dce120/dce120resource.c, the...

5.1CVSS6.5AI score0.00379EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2023/02/15 3:54 a.m.•15 views

SUSE CVE-2020-24999

There is an invalid memory access in the function fprintf located in Error.cc in Xpdf 4.0.2. It can be triggered by sending a crafted PDF file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have unspecified other impact...

7.8CVSS7.5AI score0.01055EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•14 views

SUSE CVE-2026-12246

NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a maximum of 111 attacker controlled bytes...

8.1CVSS5.8AI score0.00265EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:34 a.m.•14 views

SUSE CVE-2026-12706

A use-after-free vulnerability was found in FFmpeg's RASC video decoder. The decodemove function initializes a read pointer into a decompressed buffer, but a subsequent reallocation of that same buffer during move-table processing leaves the pointer dangling. An attacker could exploit this by...

6.5CVSS6AI score0.00245EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/15 1:20 a.m.•14 views

SUSE CVE-2026-54057

Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.3, kitty's OSC 21 color-control query reply reflects attacker-controlled bytes, including newlines, into the shell's input without sanitization. Version 0.47.3 fixes the issue...

7.8CVSS5.2AI score0.00166EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/13 2:30 a.m.•14 views

SUSE CVE-2025-71330

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attackers can craft an ICNS buffer containing valid magic bytes and a zero-valued entry length field to...

8.7CVSS5.7AI score0.0043EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/13 2:28 a.m.•14 views

SUSE CVE-2026-12015

Use after free in Autofill in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.3AI score0.00227EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/13 2:28 a.m.•14 views

SUSE CVE-2026-12022

Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.4AI score0.00166EPSS
Exploits0References3
Total number of security vulnerabilities5000