Vulnerabilidades en suse
194 resultadosCVE-2025-23389HIGHRancher does not Properly Validate Account Bindings in SAML Authentication Enables User Impersonation on First LoginEPSS 0.4%CVE-2025-23391CRITICALRancher: Restricted Administrator can change Administrator's passwordsEPSS 0.4%CVE-2020-8023HIGHLocal privilege escalation from ldap to root when using OPENLDAP_CONFIG_BACKEND=ldap in openldap2EPSS 0.4%CVE-2023-32194HIGHRancher permissions on 'namespaces' in any API group grants 'edit' permissions on namespaces in 'core'EPSS 0.4%CVE-2020-8028CRITICALsalt-api is accessible to every user on SUSE Manager ServerEPSS 0.4%CVE-2018-19638LOWUser can overwrite arbitrary log files in support tarEPSS 0.4%CVE-2025-54469CRITICALNeuVector Enforcer is vulnerable to Command Injection and Buffer overflowEPSS 0.4%CVE-2024-52280HIGHUsers can issue watch commands for arbitrary resourcesEPSS 0.4%CVE-2019-18897HIGHLocal privilege escalation from user salt to rootEPSS 0.4%CVE-2022-43754LOWSUMA/UYUNI reflected cross site scripting in /rhn/audit/scap/Search.doEPSS 0.4%CVE-2019-18901MEDIUMmysql-systemd-helper allows setting 640 permissions of arbitrary filesEPSS 0.4%CVE-2026-41050CRITICALHelm impersonation bypass of `RESTClientGetter` retains `cluster-admin` during template renderingEPSS 0.4%CVE-2021-25314HIGHhawk: Insecure file permissionsEPSS 0.4%CVE-2024-22030HIGHRancher agents can be hijacked by taking over the Rancher Server URLEPSS 0.4%CVE-2018-17957LOWyast2-rmt leaks database passwords in process listEPSS 0.4%CVE-2024-52282MEDIUMRancher Helm Applications may have sensitive values leakedEPSS 0.4%CVE-2024-22032HIGHRancher's RKE1 Encryption Config kept in plain-text within cluster AppliedSpecEPSS 0.4%CVE-2022-21951MEDIUMRancher: Weave CNI password is not set if RKE template is used with CNI value overriddenEPSS 0.4%CVE-2026-25705HIGHRancher Extensions have arbitrary file access via path traversalEPSS 0.4%CVE-2019-3693HIGHLocal privilege escalation from user wwwrun to root in the packaging of mailmanEPSS 0.4%