Language:
https://bugzilla.suse.com/1146452
https://bugzilla.suse.com/1181400
https://bugzilla.suse.com/1194376
Severity: Medium
ID: 157348
File Name: openSUSE-2022-0024-1.nasl
Version: 1.3
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 2/3/2022
Updated: 11/17/2023
Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Medium
Score: 4.4
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.4
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS Score Source: CVE-2022-22707
Risk Factor: Medium
Base Score: 5.9
Temporal Score: 5.3
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: p-cpe:/a:novell:opensuse:lighttpd-mod_magnet, p-cpe:/a:novell:opensuse:lighttpd-mod_vhostdb_pgsql, p-cpe:/a:novell:opensuse:lighttpd-mod_authn_gssapi, p-cpe:/a:novell:opensuse:lighttpd-mod_vhostdb_dbi, p-cpe:/a:novell:opensuse:lighttpd-mod_vhostdb_mysql, p-cpe:/a:novell:opensuse:lighttpd-mod_maxminddb, p-cpe:/a:novell:opensuse:lighttpd-mod_webdav, p-cpe:/a:novell:opensuse:lighttpd-mod_rrdtool, cpe:/o:novell:opensuse:15.3, p-cpe:/a:novell:opensuse:lighttpd, p-cpe:/a:novell:opensuse:lighttpd-mod_authn_sasl, p-cpe:/a:novell:opensuse:lighttpd-mod_authn_ldap, p-cpe:/a:novell:opensuse:lighttpd-mod_vhostdb_ldap, p-cpe:/a:novell:opensuse:lighttpd-mod_authn_pam
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 2/2/2022
Vulnerability Publication Date: 1/6/2022
CVE: CVE-2022-22707