openSUSE Factory Vulnerabilities
Opensuse Factory vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
openldap2: /usr/lib/openldap/start allows ldap user/group to recursively chown arbitrary directory trees to itself
CVE-2022-31253OpensuseFactory7.1HIGHcscreen: usage of fixed path /tmp/cscreen.debug
CVE-2022-21945OpensuseFactory5.1MEDIUMsuddoers configuration for cscreen not restrictive enough
CVE-2022-21946OpensuseFactory5.3MEDIUMwatchman: chown in watchman@.socket unit allows symlink attack
CVE-2022-21944OpensuseOpensuse Backports Sle...7.8HIGHparsec: dangerous 777 permissions for /run/parsec
CVE-2021-36781OpensuseFactory5.9MEDIUMpython-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root
CVE-2021-25322OpensuseLeap 15.26.8MEDIUMpython-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root
CVE-2021-31997OpensuseLeap 15.26.8MEDIUMvirtualbox: missing sticky bit for /etc/vbox allows local root exploit for members of vboxusers group
CVE-2021-25319OpensuseFactory7.8HIGHLocal privilege escalation to root due to insecure tmp file usage
CVE-2020-8032OpensuseFactory6.7MEDIUMProblematic permissions in hylafax+ packaging allow escalation from uucp to other users
CVE-2020-8024OpensuseOpensuse Leap 15.25.3MEDIUMLocal privilege escalation in exim package from user mail to root
CVE-2020-8015OpensuseFactory8.4HIGHyast: Fallback to DES without configuration in /etc/login.def
CVE-2019-3700OpensuseFactory2.9LOWLocal privilege escalation from munin to root in the packaging of munin
CVE-2019-3694OpensuseFactory7.7HIGHLocal privilege escalation from user privoxy to root
CVE-2019-3699OpensuseLeap 15.17.7HIGH