Suse Lifecycle Management Server@* Security Vulnerabilities and Issues — Suse Lifecycle Management Server@* CVE List

Lucene search

NovellSuse Lifecycle Management Server*

3 matches found

CVE•added 2014/04/16 6:37 p.m.•42 views

CVE-2011-0993

SUSE Lifecycle Management Server before 1.1 uses world readable postgres credentials, which allows local users to obtain sensitive information via unspecified vectors.

2.1CVSS5.9AI score0.00132EPSS

CVE•added 2013/12/10 4:55 p.m.•40 views

CVE-2013-7042

SUSE Lifecycle Management Server (SLMS) before 1.3.7 uses world-readable permissions for the secret keys, which allows local users to gain privileges via unspecified vectors.

4.6CVSS6.8AI score0.00119EPSS

CVE•added 2013/12/10 4:55 p.m.•31 views

CVE-2013-3710

SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate a new secret key when the service starts, which allows remote attackers to defeat intended cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.

4.3CVSS6.8AI score0.01415EPSS