Vulnerabilities in openSUSE
79 resultsCVE-2020-8016MEDIUMrace condition in the packaging of texlive-filesystenEPSS 0.3%CVE-2023-32184HIGHA Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user thEPSS 0.3%CVE-2021-25317LOWcups: ownership of /var/log/cups allows the lp user to create files as rootEPSS 0.3%CVE-2019-18899MEDIUMapt-cacher-ng insecure use of /run/apt-cacher-ngEPSS 0.3%CVE-2022-21946MEDIUMsuddoers configuration for cscreen not restrictive enoughEPSS 0.3%CVE-2021-25319HIGHvirtualbox: missing sticky bit for /etc/vbox allows local root exploit for members of vboxusers groupEPSS 0.3%CVE-2022-31254HIGHrmt-server-pubcloud allows to escalate from user _rmt to rootEPSS 0.2%CVE-2022-21945MEDIUMcscreen: usage of fixed path /tmp/cscreen.debugEPSS 0.2%CVE-2022-45153HIGHsaphanabootstrap-formula: Escalation to root for arbitrary users in hana/ha_cluster.slsEPSS 0.2%CVE-2021-36781MEDIUMparsec: dangerous 777 permissions for /run/parsecEPSS 0.2%CVE-2020-8017MEDIUMrace condition on texlive-filesystem cron job allows for the deletion of unintended filesEPSS 0.2%CVE-2023-32183HIGHIncorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access to the hacluster to escalate tEPSS 0.2%CVE-2025-53881MEDIUMSUSE-specific logrotate configuration allows escalation from mail user/group to rootEPSS 0.2%CVE-2025-46810HIGHA UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of openSUSE Tumbleweed traefik2 allows the traefik user to escalate EPSS 0.1%CVE-2022-21950MEDIUMcanna: unsafe handling of /tmp/.iroha_unix directoryEPSS 0.1%CVE-2022-31252MEDIUMpermissions: chkstat does not check for group-writable parent directories or target files in safeOpen()EPSS 0.1%CVE-2026-25701HIGHAn Insecure Temporary File vulnerability in openSUSE sdbootutil allows local users to pre-create a directory to achieve various effects likeEPSS 0.1%CVE-2019-3700LOWyast: Fallback to DES without configuration in /etc/login.defEPSS 0.1%CVE-2024-49506HIGHFixed temporary file path in aeon-checks allows fixing of disk encryption keyEPSS 0.1%