Language:
https://bugzilla.suse.com/1062303
https://bugzilla.suse.com/1194400
https://bugzilla.suse.com/1211630
https://bugzilla.suse.com/1211631
https://bugzilla.suse.com/1214406
https://bugzilla.suse.com/1216109
https://bugzilla.suse.com/1216123
https://bugzilla.suse.com/1219964
https://bugzilla.suse.com/1221400
https://bugzilla.suse.com/1222539
https://bugzilla.suse.com/1226136
https://bugzilla.suse.com/1229858
https://bugzilla.suse.com/1229867
https://bugzilla.suse.com/1229869
https://bugzilla.suse.com/1230323
http://www.nessus.org/u?d7df3c54
https://www.suse.com/security/cve/CVE-2021-25743
https://www.suse.com/security/cve/CVE-2023-2727
https://www.suse.com/security/cve/CVE-2023-2728
https://www.suse.com/security/cve/CVE-2023-39325
https://www.suse.com/security/cve/CVE-2023-44487
https://www.suse.com/security/cve/CVE-2023-45288
https://www.suse.com/security/cve/CVE-2024-0793
Severity: Critical
ID: 207488
File Name: suse_SU-2024-3341-1.nasl
Version: 1.2
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 9/20/2024
Updated: 9/20/2024
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Medium
Score: 6.1
Risk Factor: Low
Base Score: 2.1
Temporal Score: 1.7
Vector: CVSS2#AV:N/AC:H/Au:S/C:N/I:P/A:N
CVSS Score Source: CVE-2021-25743
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 6
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
CVSS Score Source: CVE-2023-2728
Risk Factor: Critical
Base Score: 9.3
Threat Score: 9.3
Threat Vector: CVSS:4.0/E:A
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score Source: CVE-2023-44487
CPE: p-cpe:/a:novell:suse_linux:kubernetes1.24-client-common, p-cpe:/a:novell:suse_linux:kubernetes1.24-client, cpe:/o:novell:suse_linux:15
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 9/19/2024
Vulnerability Publication Date: 5/2/2021
CISA Known Exploited Vulnerability Due Dates: 10/31/2023
CVE: CVE-2021-25743, CVE-2023-2727, CVE-2023-2728, CVE-2023-39325, CVE-2023-44487, CVE-2023-45288, CVE-2024-0793, CVE-2024-24786, CVE-2024-3177
SuSE: SUSE-SU-2024:3341-1