Suse Linux Enterprise Server 11 vulnerabilities

4 known vulnerabilities affecting suse/suse_linux_enterprise_server_11.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3LOW1

Vulnerabilities

Page 1 of 1
CVE-2020-8013LOWCVSS 2.5≥ permissions, < 2013.1.7-0.6.12.12020-03-02
CVE-2020-8013 [LOW] CWE-59 CVE-2020-8013: A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12 A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The symlinks can't be controlled by attackers on default systems, so exploitation i
cvelistv5nvd
CVE-2019-3698HIGHCVSS 7.0≥ nagios, ≤ 3.0.6-1.25.36.3.12020-02-28
CVE-2019-3698 [MEDIUM] CWE-59 CVE-2019-3698: UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linu UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 11; openSUSE Factory allows local attackers to cause cause DoS or potentially escalate privileges by winning a race. This issue affects: SUSE Linux Enterprise Server 12 nagios version 3.5.1-5.27 and pr
cvelistv5nvd
CVE-2019-3692HIGHCVSS 7.8≥ inn, ≤ 2.4.2-170.21.3.12020-01-24
CVE-2019-3692 [HIGH] CWE-59 CVE-2019-3692: The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local at The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE Factory inn version 2.6.2-2.2 and prior versions. openSUSE Leap 15.1 inn version 2.
cvelistv5nvd
CVE-2019-3693HIGHCVSS 7.8≥ mailman, < 2.1.15-9.6.15.12020-01-24
CVE-2019-3693 [HIGH] CWE-59 CVE-2019-3693: A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SU A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12; openSUSE Leap 15.1 allowed local attackers to escalate their privileges from user wwwrun to root. Additionally arbitrary files could be changed to group mailman. This issue affects: SUSE Linux Enterprise Server 11 mailman ver
cvelistv5nvd