Suse linux enterprise

This hub aggregates every CVE we track for Suse linux enterprise, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Suse linux enterprise.

• CVE-2026-41054Missing exit out of permission check in haveged could lead to root exploit7.8May 20, 2026
• CVE-2026-44933Path Traversal in Plugin Loading in libzypp7.8May 20, 2026
• CVE-2026-25702nftables disabled due to incorrect kernel backport7.3Mar 5, 2026
• CVE-2025-46802Temporary chown() of users' TTY to mode 0666 allows PTY hijacking in screen6.0May 26, 2025
• CVE-2024-22034Crafted projects can overwrite special files in the .osc config directory5.5Oct 16, 2024
• CVE-2024-22029tomcat packaging allows for escalation to root from tomcat user7.8Oct 16, 2024
• CVE-2023-32182A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 pos...5.9Sep 19, 2023
• CVE-2022-45154supportconfig does not remove passwords in /etc/iscsi/iscsid.conf and /etc/target/lio_setup.sh4.4Feb 15, 2023
• CVE-2022-45153saphanabootstrap-formula: Escalation to root for arbitrary users in hana/ha_cluster.sls7.0Feb 15, 2023
• CVE-2023-22643libzypp-plugin-appdata: potential arbitrary code execution via shell injection due to `os.system` calls6.3Feb 7, 2023
• CVE-2022-31254rmt-server-pubcloud allows to escalate from user _rmt to root7.8Feb 7, 2023
• CVE-2022-31252permissions: chkstat does not check for group-writable parent directories or target files in safeOpen()4.4Oct 6, 2022
• CVE-2021-46705grub2-once uses fixed file name in /var/tmp5.1Mar 16, 2022
• CVE-2021-32000clone-master-clean-up: dangerous file system operations3.2Jul 28, 2021
• CVE-2019-18906cryptctl: client side password hashing is equivalent to clear text password storage9.8Jun 30, 2021