Suse Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by suse
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Attackers can leak information or cause denial of service through specially crafted git repositories in obs-scm-bridge
CVE-2024-22038SuseOpensuse Factory7.3HIGHRancher vSphere Vulnerability: Plaintext Storage of CPI/CSI Credentials
CVE-2022-45157SuseRancher9.1CRITICALRancher Vulnerability: Narrow MITM Exploit via Domain Control
CVE-2024-22030SuseRancher8HIGHLocal User Escalation via Insecure Packaging
CVE-2024-22029SuseContainer Suse/manager...7.8HIGHNaming Privilege Abuse Vulnerability
CVE-2023-32194SuseRancher7.2HIGHUnauthenticated XSS vulnerability in Norman's public API endpoint can lead to remote code execution
CVE-2023-32193SuseNorman8.3HIGHUnauthenticated Cross-Site Scripting (XSS) Vulnerability
CVE-2023-32192SuseApiserver8.3HIGHNon-admin users can escalate to admin rights via configmap
CVE-2023-32191SuseRke9.9CRITICALRancher Vulnerability: Unauthorized Access via Deleted Users
CVE-2023-22650SuseRancher8.8HIGHAllocation of Resources Without Limits Vulnerability in SUSE RKE2 by SUSE
CVE-2023-32186SUSERKE27.5HIGHDenial of Service Vulnerability in SUSE k3s
CVE-2023-32187SUSEk3s7.5HIGHImproper Privilege Management in SUSE Rancher Affects Kubernetes Secrets
CVE-2023-22647SuseRancher8HIGHImproper Privilege Management in SUSE Rancher Affects Azure AD User Permissions
CVE-2023-22648SuseRancher8.8HIGHCross-site Scripting Vulnerability in Rancher by SUSE
CVE-2022-43760SuseRancher8.4HIGHImproper Privilege Management in SUSE Rancher
CVE-2023-22651SuseRancher9.9CRITICALkubewarden: Excessive permissions for kubewarden-controller-manager-cluster-role
CVE-2023-22645SuseKubewarden8.8HIGHsaphanabootstrap-formula: Escalation to root for arbitrary users in hana/ha_cluster.sls
CVE-2022-45153SuseSuse Linux Enterprise ...7HIGHRancher: Exposure of sensitive fields
CVE-2022-43757SuseRancher9.9CRITICALlibzypp-plugin-appdata: potential arbitrary code execution via shell injection due to `os.system` calls
CVE-2023-22643SUSESUSE Linux Enterprise ...7.8HIGHAuthenticated user can gain unauthorized shell pod and kubectl access in the local cluster
CVE-2022-21953SuseRancher7.4HIGHRancher: Privilege escalation via promoted roles
CVE-2022-43759SuseRancher7.2HIGHrmt-server-pubcloud allows to escalate from user _rmt to root
CVE-2022-31254SuseSuse Linux Enterprise ...7.8HIGH[RANCHER] OS command injection in Rancher and Fleet
CVE-2022-31249SuseRancher7.5HIGHRancher: Non-random authentication token
CVE-2022-43755SuseRancher7.1HIGHRancher: Command injection in Git package
CVE-2022-43758SuseRancher7.6HIGH