Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-18904

Опубликовано: 03 апр. 2020
Источник: nvd
CVSS3: 6.5
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Server Applications 15, SUSE Linux Enterprise Module for Server Applications 15-SP1, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1 allows remote attackers to cause DoS against rmt by requesting migrations. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise High Performance Computing 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Public Cloud 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Module for Server Applications 15 rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Server Applications 15-SP1 rmt

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:opensuse:rmt-server:*:*:*:*:*:*:*:*
Версия до 2.5.2-3.26.1 (включая)

Одно из

cpe:2.3:a:suse:linux_enterprise_high_performance_computing:15.0:*:*:*:espos:*:*:*
cpe:2.3:a:suse:linux_enterprise_high_performance_computing:15.0:*:*:*:ltss:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:-:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:ltss:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:*:*:*:*:sap:*:*
Конфигурация 2

Одновременно

cpe:2.3:a:opensuse:rmt-server:*:*:*:*:*:*:*:*
Версия до 2.5.2-3.9.1 (включая)

Одно из

cpe:2.3:o:suse:linux_enterprise:15.0:sp1:*:*:*:public_cloud:*:*
cpe:2.3:o:suse:linux_enterprise_server:15:sp1:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:a:opensuse:rmt-server:*:*:*:*:*:*:*:*
Версия до 2.5.2-lp151.2.9.1 (включая)
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

EPSS

Процентиль: 76%
0.00933
Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-400
CWE-400

Связанные уязвимости

suse-cvrf логотип

openSUSE-SU-2020:0235-1

suse-cvrf
почти 6 лет назад

Security update for rmt-server

suse-cvrf логотип

SUSE-SU-2020:1179-1

suse-cvrf
почти 6 лет назад

Security update for rmt-server

suse-cvrf логотип

SUSE-SU-2020:0278-1

suse-cvrf
около 6 лет назад

Security update for rmt-server

suse-cvrf логотип

SUSE-SU-2020:0260-1

suse-cvrf
около 6 лет назад

Security update for rmt-server

github логотип

GHSA-fpvp-5qrg-qr4v

github
больше 3 лет назад

A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Server Applications 15, SUSE Linux Enterprise Module for Server Applications 15-SP1, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1 allows remote attackers to cause DoS against rmt by requesting migrations. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise High Performance Computing 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Public Cloud 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Module for Server Applications 15 rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Server Applications 15-SP1 ...

EPSS

Процентиль: 76%
0.00933
Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-400
CWE-400