VYPR

rpm package

suse/smt&distro=SUSE Linux Enterprise Server 12 SP2-BCL

pkg:rpm/suse/smt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL

Vulnerabilities (3)

  • CVE-2018-12472HigOct 4, 2018
    affected < 3.0.37-52.23.6fixed 3.0.37-52.23.6

    A improper authentication using the HOST header in SUSE Linux SMT allows remote attackers to spoof a sibling server. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.

  • CVE-2018-12471MedOct 4, 2018
    affected < 3.0.37-52.23.6fixed 3.0.37-52.23.6

    A External Entity Reference ('XXE') vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.

  • CVE-2018-12470CriOct 4, 2018
    affected < 3.0.37-52.23.6fixed 3.0.37-52.23.6

    A SQL Injection in the RegistrationSharing module of SUSE Linux SMT allows remote attackers to cause execute arbitrary SQL statements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37.