VYPR

Tumbleweed

by SUSE S.A.

CVEs (3)

  • CVE-2025-46810HigSep 2, 2025
    risk 0.55cvss epss 0.00

    A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of openSUSE Tumbleweed traefik2 allows the traefik user to escalate to root. This issue affects Tumbleweed: from ? before 2.11.29.

  • CVE-2025-53881MedOct 2, 2025
    risk 0.45cvss epss 0.00

    A UNIX Symbolic Link (Symlink) Following vulnerability in logrotate config in the exim package allowed privilege escalation from mail user/group to root.This issue affects Tumbleweed: from ? before 4.98.2-lp156.248.1.

  • CVE-2025-62875Nov 20, 2025
    risk 0.00cvss epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1.