Описание
SUSE Studio Onsite 1.3.x before 1.3.6 and SUSE Studio Extension for System z 1.3 uses "static" secret tokens, which has unspecified impact and vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:suse:studio_extension_for_system_z:1.3:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:suse:studio_onsite:1.3.5:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00332
Низкий
10 Critical
CVSS2
Дефекты
CWE-310
Связанные уязвимости
github
больше 3 лет назад
SUSE Studio Onsite 1.3.x before 1.3.6 and SUSE Studio Extension for System z 1.3 uses "static" secret tokens, which has unspecified impact and vectors.
EPSS
Процентиль: 56%
0.00332
Низкий
10 Critical
CVSS2
Дефекты
CWE-310