Skip to main content

Suse Cloud

2 CVEs product

Monthly

CVE-2014-0592 HIGH PATCH This Week

Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework, as used in SUSE Cloud 3, does not enable netfilter on bridges when creating new instances, which allows remote attackers to bypass. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Barclamp Suse Cloud
NVD GitHub VulDB
CVSS 2.0
7.5
EPSS
0.4%
CVE-2012-0434 CRITICAL Act Now

The server in Crowbar, as used in SUSE Cloud 1.0, uses weak permissions for the production.log file, which has unspecified impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Suse Cloud
NVD
CVSS 2.0
10.0
EPSS
0.2%
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework, as used in SUSE Cloud 3, does not enable netfilter on bridges when creating new instances, which allows remote attackers to bypass. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Barclamp Suse Cloud
NVD GitHub VulDB
EPSS 0% CVSS 10.0
CRITICAL Act Now

The server in Crowbar, as used in SUSE Cloud 1.0, uses weak permissions for the production.log file, which has unspecified impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Suse Cloud
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy