CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-13176
SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2025:0387-1)
Description: Nessus Plugin ID 215166 with Medium Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0387-1 advisory. - CVE-2024-13176: Fixed timing side-channel in ECDSA signature computation (bsc#1236136).Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected libopenssl-3-devel, libopenssl3 and / or openssl-3 packages. Read more at https://www.tenable.com/plugins/nessus/215166

EPSS Score: 0.04%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2024-11187
SUSE SLES15 Security Update : bind (SUSE-SU-2025:0359-1)
Description: Nessus Plugin ID 215167 with High Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0359-1 advisory. - CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section (bsc#1236596)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected bind, bind-doc, bind-utils and / or python3-bind packages. Read more at https://www.tenable.com/plugins/nessus/215167

CVSS: HIGH (7.5)

EPSS Score: 0.04%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2024-24790
SUSE SLES12 Security Update : google-osconfig-agent (SUSE-SU-2025:0377-1)
Description: Nessus Plugin ID 215168 with Critical Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES12 / SLES_SAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:0377-1 advisory. - Update to version 20250115.01 (bsc#1236406, bsc#1236407) - CVE-2024-24790: Bump the golang compiler version to 1.22.4 (bsc#1225974)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected google-osconfig-agent package. Read more at https://www.tenable.com/plugins/nessus/215168

CVSS: CRITICAL (9.8)

EPSS Score: 0.06%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2025-0725
SUSE SLED15 / SLES15 Security Update : curl (SUSE-SU-2025:0370-1)
Description: Nessus Plugin ID 215169 with High Severity Synopsis The remote SUSE host is missing one or more security updates. Description The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0370-1 advisory. - CVE-2025-0725: Fixed gzip integer overflow (bsc#1236590) - CVE-2025-0167: Fixed netrc and default credential leak (bsc#1236588)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Update the affected curl, libcurl-devel, libcurl4 and / or libcurl4-32bit packages. Read more at https://www.tenable.com/plugins/nessus/215169

EPSS Score: 0.05%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2025-0938
openSUSE 15 Security Update : python39 (SUSE-SU-2025:0386-1)
Description: Nessus Plugin ID 215170 with Medium Severity Synopsis The remote openSUSE host is missing a security update. Description The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0386-1 advisory. - CVE-2025-0938: domain names containing square brackets are not identified as incorrect by urlparse. (bsc#1236705)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected packages. Read more at https://www.tenable.com/plugins/nessus/215170

CVSS: MEDIUM (6.3)

EPSS Score: 0.04%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2024-39917
SUSE SLES15 Security Update : xrdp (SUSE-SU-2025:0350-1)
Description: Nessus Plugin ID 215171 with Critical Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0350-1 advisory. - CVE-2024-39917: Enforce no login screen if require_credentials is set (bsc#1227769)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected libpainter0, librfxencode0, xrdp and / or xrdp-devel packages. Read more at https://www.tenable.com/plugins/nessus/215171

CVSS: HIGH (7.2)

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2024-11218
SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2025:0382-1)
Description: Nessus Plugin ID 215172 with High Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0382-1 advisory. - CVE-2024-11218: Fixed a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. (bsc#1236270)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected podman, podman-docker, podman-remote and / or podmansh packages. Read more at https://www.tenable.com/plugins/nessus/215172

EPSS Score: 0.05%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2024-13176
SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2025:0388-1)
Description: Nessus Plugin ID 215173 with Medium Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0388-1 advisory. - CVE-2024-13176: Fixed timing side-channel in ECDSA signature computation (bsc#1236136).Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected libopenssl-3-devel, libopenssl3 and / or openssl-3 packages. Read more at https://www.tenable.com/plugins/nessus/215173

EPSS Score: 0.04%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2025-0725
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : curl (SUSE-SU-2025:0369-1)
Description: Nessus Plugin ID 215174 with High Severity Synopsis The remote SUSE host is missing one or more security updates. Description The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0369-1 advisory. - CVE-2025-0725: Fixed gzip integer overflow (bsc#1236590) - CVE-2025-0167: Fixed netrc and default credential leak (bsc#1236588)Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Update the affected packages. Read more at https://www.tenable.com/plugins/nessus/215174

EPSS Score: 0.05%

Source: Tenable Plugins
February 10th, 2025 (5 months ago)

CVE-2025-24528
SUSE SLES12 Security Update : krb5 (SUSE-SU-2025:0351-1)
Description: Nessus Plugin ID 215175 with Medium Severity Synopsis The remote SUSE host is missing a security update. Description The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0351-1 advisory. - CVE-2025-24528: Fixed out-of-bounds write caused by overflow when calculating ulog block size can lead to process crash (bsc#1236619).Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Solution Update the affected packages. Read more at https://www.tenable.com/plugins/nessus/215175
Source: Tenable Plugins
February 10th, 2025 (5 months ago)