SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:744-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-3689 Upstream summary: The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1513-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-5522 CVE-2015-5523 CVE-2016-6583 Upstream summary: Heap-based buffer overflow in the ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3054-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25654 CVE-2010-2496 CVE-2018-16877 CVE-2015-1867 CVE-2016-7035 CVE-2016-7797 CVE-2018-16878 CVE-2019-3885 Upstream summary: An ACL bypass flaw was found in pacemaker. An attacker having a local account on […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1135-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-25629 CVE-2022-4904 CVE-2016-5180 CVE-2017-1000381 Upstream summary: c-ares is a C library for asynchronous DNS requests. `ares__read_line()` is used to parse local configuration files such as […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2009:002 (see also SUSE bugzilla) Related CVEs: CVE-2008-4865 CVE-2016-6131 Upstream summary: Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1256-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-47154 Upstream summary: The Net::CIDR::Lite module before 0.22 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03025-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-7962 Upstream summary: In Jakarta Mail 2.0.2 it is possible to preform a SMTP Injection by utilizing the \r and \n UTF-8 characters to separate […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0851-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-51441 CVE-2012-5784 CVE-2014-3596 CVE-2018-8032 Upstream summary: ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2011:035 (see also SUSE bugzilla) Related CVEs: CVE-2011-2483 Upstream summary: crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0442-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-22792 CVE-2023-22795 CVE-2021-22904 CVE-2021-22885 CVE-2024-47887 CVE-2023-28362 CVE-2022-23633 Upstream summary: A regular expression based DoS vulnerability in Action Dispatch <6.0.6.1,< 6.1.7.1, and <7.0.4.1. Specially crafted cookies, […]