CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-1602

HIGH
7.8
CVSS Severity Score
EPSS Score0.1720%
EPSS Percentile33.31th
Published2017年3月23日
Last Modified2026年5月13日

Vulnerability Description

A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attackers to execute code as the user running supportconfig (usually root).

Affected Platforms (CPE)

💻
Suse

Linux Enterprise Desktop

= 12
💻
Suse

Linux Enterprise Desktop

= 12
💻
Suse

Linux Enterprise Server

= 12
💻
Suse

Suse Linux Enterprise Server

= 12

References & Advisories

🔗 http://lists.suse.com/pipermail/sle-security-updates/2016-June/002096.html
🔗 http://lists.suse.com/pipermail/sle-security-updates/2016-June/002096.html

相關漏洞威脅

CVE-2006-073610.0

Stack-based buffer overflow in the pam_micasa PAM authentication module in CASA on Novell Linux Desktop 9 and Open Enterprise Serv...

CVE-2016-70509.8

SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Li...

CVE-2016-54059.8

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enter...

CVE-2007-51967.5

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linu...