Common Problems

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0319-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-4806 CVE-2022-48064 CVE-2019-1010180 CVE-2017-16829 CVE-2018-7208 Upstream summary: Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1. Table of contents Symptom & Impact […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:4193-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-45463 CVE-2018-10113 CVE-2012-4433 Upstream summary: load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:8795 (see also SUSE bugzilla) Related CVEs: CVE-2023-37536 CVE-2018-1311 CVE-2017-12627 CVE-2009-1885 CVE-2016-0729 CVE-2016-2099 CVE-2016-4463 Upstream summary: An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0405-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-5208 Upstream summary: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0226-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-23650 CVE-2024-2365 Upstream summary: BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-202410:15282-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-5569 Upstream summary: A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. The vulnerability is triggered when […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:0466-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-0862 CVE-2013-4342 Upstream summary: builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3198-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-22656 CVE-2023-45221 CVE-2023-47169 CVE-2023-47282 CVE-2023-48368 Upstream summary: Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1382-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10683 CVE-2018-1000632 Upstream summary: dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:127-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20305 CVE-2021-3580 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-6489 Upstream summary: A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST […]