Unrated severityNVD Advisory· Published Jul 5, 2009· Updated Apr 23, 2026

CVE-2009-1648

Description

The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain circumstances involving reboots during online updates, which makes it easier for remote attackers to access network services.

Affected products

SUSE S.A./Linux2 versions
cpe:2.3:o:suse:suse_linux:11:*:enterprise_desktop:*:*:*:*:*+ 1 more
- cpe:2.3:o:suse:suse_linux:11:*:enterprise_desktop:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux:11:*:enterprise_server:*:*:*:*:*
SUSE S.A./YaST2 LDAP modulellm-create

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.htmlnvdVendor Advisory
secunia.com/advisories/35685nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000