CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1602

HIGH
7.8
CVSS Severity Score
EPSS Score0.1720%
EPSS Percentile33.31th
PublishedMar 23, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attackers to execute code as the user running supportconfig (usually root).

Affected Platforms (CPE)

πŸ’»
Suse

Linux Enterprise Desktop

= 12
πŸ’»
Suse

Linux Enterprise Desktop

= 12
πŸ’»
Suse

Linux Enterprise Server

= 12
πŸ’»
Suse

Suse Linux Enterprise Server

= 12

References & Advisories

πŸ”— http://lists.suse.com/pipermail/sle-security-updates/2016-June/002096.html
πŸ”— http://lists.suse.com/pipermail/sle-security-updates/2016-June/002096.html

Related Vulnerabilities

CVE-2006-073610.0

Stack-based buffer overflow in the pam_micasa PAM authentication module in CASA on Novell Linux Desktop 9 and Open Enterprise Serv...

CVE-2016-70509.8

SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Li...

CVE-2016-54059.8

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enter...

CVE-2007-51967.5

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linu...