Opensuse Latest Vulnerabilities

Privilege Escalation Vulnerability in Exim Package by SUSE

CVE-2025-53881

OpensuseTumbleweed6.9MEDIUM

UNIX Symbolic Link Vulnerability in openSUSE Tumbleweed Traefik2

CVE-2025-46810

OpensuseTumbleweed8.5HIGH

Cross-Site Scripting Vulnerability in openSUSE Tumbleweed MirrorCache

CVE-2024-49505

OpensuseMirrorcache6.1MEDIUM

Insecure Storage of Sensitive Information in openSUSE opensuse-welcome

CVE-2023-32184

openSUSEopensuse-welcome7.8HIGH

Incorrect Default Permissions in openSUSE Tumbleweed's hawk2 Package

CVE-2023-32183

OpensuseTumbleweed7.8HIGH

Stack buffer overflow in "read_file" function

CVE-2023-22652

OpensuseLibeconf6.5MEDIUM

Stack buffer overflow in "econf_writeFile" function

CVE-2023-32181

openSUSElibeconf6.5MEDIUM

paste: XSS on the image upload function

CVE-2022-21948

OpensusePaste4.3MEDIUM

travel-support-program vulnerable to data exfiltration via Ransack query injection

CVE-2022-46163

OpensuseTravel-support-program7.5HIGH

openldap2: /usr/lib/openldap/start allows ldap user/group to recursively chown arbitrary directory trees to itself

CVE-2022-31253

OpensuseFactory7.1HIGH

canna: unsafe handling of /tmp/.iroha_unix directory

CVE-2022-21950

OpensuseOpensuse Backports Sle...5.3MEDIUM

keylime %post scriplet allows for privilege escalation from keylime user to root

CVE-2022-31250

OpensuseTumbleweed7.1HIGH

cscreen: usage of fixed path /tmp/cscreen.debug

CVE-2022-21945

OpensuseFactory5.1MEDIUM

suddoers configuration for cscreen not restrictive enough

CVE-2022-21946

OpensuseFactory5.3MEDIUM

login-proxy sends password to attacker-provided domain

CVE-2021-36777

OpensuseBuild Service8.1HIGH

Heap Overflow Vulnerabilities in openSUSE/libsolv

CVE-2021-44568

OpensuseLibsolv6.5MEDIUM

watchman: chown in watchman@.socket unit allows symlink attack

CVE-2022-21944

OpensuseOpensuse Backports Sle...7.8HIGH

parsec: dangerous 777 permissions for /run/parsec

CVE-2021-36781

OpensuseFactory5.9MEDIUM

Buffer Overflow Vulnerability in libsolv by openSUSE

CVE-2021-33938

OpensuseLibsolv7.5HIGH

Buffer Overflow Vulnerability in libsolv by openSUSE

CVE-2021-33930

OpensuseLibsolv7.5HIGH

Buffer Overflow Vulnerability in Libsolv by openSUSE

CVE-2021-33929

OpensuseLibsolv7.5HIGH

Buffer Overflow Vulnerability in libsolv by openSUSE

CVE-2021-33928

OpensuseLibsolv7.5HIGH

python-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root

CVE-2021-25322

OpensuseLeap 15.26.8MEDIUM

python-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root

CVE-2021-31997

OpensuseLeap 15.26.8MEDIUM

Buffer Overflow Vulnerability in libsolv by openSUSE

CVE-2021-3200

OpensuseLibsolv3.3LOW

Vulnerability Published:

Sort By:

2 October 2025

Privilege Escalation Vulnerability in Exim Package by SUSE

2 September 2025

UNIX Symbolic Link Vulnerability in openSUSE Tumbleweed Traefik2

13 November 2024

Cross-Site Scripting Vulnerability in openSUSE Tumbleweed MirrorCache

19 September 2023

Insecure Storage of Sensitive Information in openSUSE opensuse-welcome

7 July 2023

Incorrect Default Permissions in openSUSE Tumbleweed's hawk2 Package

1 June 2023

Stack buffer overflow in "read_file" function

Stack buffer overflow in "econf_writeFile" function

7 February 2023

paste: XSS on the image upload function

10 January 2023

travel-support-program vulnerable to data exfiltration via Ransack query injection

27 October 2022

openldap2: /usr/lib/openldap/start allows ldap user/group to recursively chown arbitrary directory trees to itself

7 September 2022

canna: unsafe handling of /tmp/.iroha_unix directory

20 July 2022

keylime %post scriplet allows for privilege escalation from keylime user to root

16 March 2022

cscreen: usage of fixed path /tmp/cscreen.debug

suddoers configuration for cscreen not restrictive enough

9 March 2022

login-proxy sends password to attacker-provided domain

21 February 2022

Heap Overflow Vulnerabilities in openSUSE/libsolv

26 January 2022

watchman: chown in watchman@.socket unit allows symlink attack

14 January 2022

parsec: dangerous 777 permissions for /run/parsec

2 September 2021

Buffer Overflow Vulnerability in libsolv by openSUSE

Buffer Overflow Vulnerability in libsolv by openSUSE

Buffer Overflow Vulnerability in Libsolv by openSUSE

Buffer Overflow Vulnerability in libsolv by openSUSE

10 June 2021

python-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root

python-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root

18 May 2021

Buffer Overflow Vulnerability in libsolv by openSUSE