← back
CVE-2013-3710

CVE-2013-3710

EPSS 1.3%
SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate a new secret key when the service starts, which allows remote attackers to defeat intended cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/100653https://bugzilla.novell.com/show_bug.cgi?id=852101https://www.suse.com/support/update/announcement/2013/suse-su-20131813-1.html