Troubleshooting

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:0543-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 Upstream summary: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-9101. Reason: This candidate is a duplicate of CVE-2015-9101. Notes: All CVE users […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0654-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-3816 CVE-2019-3833 Upstream summary: Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:205-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-46176 Upstream summary: Cargo is a Rust package manager. The Rust Security Response WG was notified that Cargo did not perform SSH host key verification […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:1658-1 (see also SUSE bugzilla) Related CVEs: CVE-2004-2771 CVE-2014-7844 Upstream summary: The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3895-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20378 Upstream summary: ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. Table of contents Symptom & Impact Environment & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3890-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24836 CVE-2022-29181 CVE-2018-3740 CVE-2019-5477 CVE-2015-8241 CVE-2015-8317 CVE-2016-5131 CVE-2017-15412  +3 more Upstream summary: Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-7098 CVE-2012-6128 CVE-2019-16239 CVE-2020-12105 CVE-2020-12823 CVE-2018-20319 CVE-2012-3291 Upstream summary: OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3331-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40320 Upstream summary: cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3707-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-41973 CVE-2022-41974 Upstream summary: multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited in conjunction with CVE-2022-41974. Local users […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0746-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1841 Upstream summary: Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow […]