vulnerability

SUSE: CVE-2016-1602: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Jun 7, 2016	Jun 7, 2016	Dec 19, 2019

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Jun 7, 2016

Added

Jun 7, 2016

Modified

Dec 19, 2019

Description

A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attackers to execute code as the user running supportconfig (usually root).

Solution

suse-upgrade-supportutils

References

SUSE-SUSE-SU-2016:1507-1
SUSE-SUSE-SU-2016:1514-1
NVD-CVE-2016-1602

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today