Cryptographic Weakness in SUSE Lifecycle Management Server by SUSE
CVE-2013-3710
Currently unrated
Key Information:
- Vendor
Novell
- Vendor
- CVE Published:
- 10 December 2013
What is CVE-2013-3710?
SUSE Lifecycle Management Server (SLMS) prior to version 1.3.7 suffers from a cryptographic vulnerability that results from the service failing to generate a new secret key at startup. This flaw enables remote attackers to exploit knowledge of previously used keys obtained from other installations, thereby bypassing intended cryptographic protections.