Suse Linux Enterprise Software Development Kit 12-Sp4 vulnerabilities
5 known vulnerabilities affecting suse/suse_linux_enterprise_software_development_kit_12-sp4.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-3681CRITICALCVSS 9.8≥ osc, < 0.162.1-15.9.12020-06-29
CVE-2019-3681 [HIGH] CWE-73 CVE-2019-3681: A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Dev
A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Development Kit 12-SP5, SUSE Linux Enterprise Software Development Kit 12-SP4; openSUSE Leap 15.1, openSUSE Factory allowed remote attackers that can change downloaded packages to overwrite arbitrary files.
cvelistv5nvd
CVE-2020-8016HIGHCVSS 7.0≥ texlive-filesystem, < 2013.74-16.5.12020-04-02
CVE-2020-8016 [MEDIUM] CWE-367 CVE-2020-8016: A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of SUS
A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; openSUSE Leap 15.1 allows local users to corrupt files or potentially escalate privi
cvelistv5nvd
CVE-2020-8017MEDIUMCVSS 6.3≥ texlive-filesystem, < 2013.74-16.5.12020-04-02
CVE-2020-8017 [MEDIUM] CWE-367 CVE-2020-8017: A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive-filesyst
A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; openSUSE Leap 15.1 allows local users in group mktex to delete arbitrary fi
cvelistv5nvd
CVE-2019-3695HIGHCVSS 7.8≥ pcp, < 3.11.9-6.14.12020-03-03
CVE-2019-3695 [HIGH] CWE-94 CVE-2019-3695: A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterpr
A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Development Tools 15-SP1, SUSE Linux Enterprise Module for Open Build
cvelistv5nvd
CVE-2019-3696HIGHCVSS 7.3≥ pcp, < 3.11.9-6.14.12020-03-03
CVE-2019-3696 [HIGH] CWE-22 CVE-2019-3696: A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp
A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Development Tools 15-SP1, SUSE Linux Enterprise M
cvelistv5nvd