CVE-2024-22037 | SUSE Manager Server prior 0.1.26-150500.3.12.2 Environment Variable database_password exposure of sensitive system information to an unauthorized control sphere

Inserito da Angelo Barbosa | Nov 28, 2024 | CVE

A vulnerability classified as problematic was found in SUSE Manager Server. This vulnerability affects unknown code of the component Environment Variable Handler. The manipulation of the argument database_password leads to exposure of sensitive system information to an unauthorized control sphere.

This vulnerability was named CVE-2024-22037. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22037 | SUSE Manager Server prior 0.1.26-150500.3.12.2 Environment Variable database_password exposure of sensitive system information to an unauthorized control sphere

Post correlati

CVE-2024-25748 | Tenda AC9 15.03.06.42_multi fromSetIpMacBind stack-based overflow

CVE-2024-8342 | SourceCodester Petshop Management System 1.0 add_client.php image_profile unrestricted upload

CVE-2024-1353 | PHPEMS up to 1.0 index.api.php index picurl deserialization

CVE-2023-39176 | Linux Kernel ksmbd out-of-bounds