CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2388

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1840%
EPSS Percentile17.88th
PublishedJun 6, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple off-by-one errors in opensuse-updater in openSUSE 10.2 have unspecified impact and attack vectors. NOTE: the vendor states that these "can be considered no security problem."

Affected Platforms (CPE)

πŸ’»
Opensuse

Opensuse

= 10.2

References & Advisories

πŸ”— http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html
πŸ”— http://secunia.com/advisories/30581
πŸ”— http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html
πŸ”— http://secunia.com/advisories/30581

Related Vulnerabilities

CVE-2011-04699.8

Code injection in openSUSE when running some source services used in the open build service 2.1 before March 11 2011.

CVE-2016-40079.8

Multiple unspecified vulnerabilities in the obs-service-extract_file package before 0.3-5.1 in openSUSE Leap 42.1 and before 0.3-3...

CVE-2021-253159.8

CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local att...

CVE-2019-36968.4

A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High ...