Opensuse Wicked vulnerabilities
3 known vulnerabilities affecting opensuse/wicked.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-7217HIGHCVSS 7.5≤ 0.6.552020-02-11
CVE-2020-7217 [HIGH] CWE-401 CVE-2020-7217: An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows networ
An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id.
nvd
CVE-2020-7216HIGHCVSS 7.5≤ 0.6.552020-02-05
CVE-2020-7216 [HIGH] CWE-401 CVE-2020-7216: An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attacker
An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.
nvd
CVE-2013-4413MEDIUM≥ 0, < 1.0.12017-10-24
CVE-2013-4413 [MEDIUM] CWE-22 Wicked gem contains Path traversal vulnerability
Wicked gem contains Path traversal vulnerability
The Wicked gem prior to v1.0.1 allows a remote attacker to traverse directories on the system via a vulnerability in `controller/concerns/render_redirect.rb`. An attacker can send a specially-crafted URL request containing `%2E%2E%2F` directory traversal sequences to read arbitrary files on the system.
ghsaosv