Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
91 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
92 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
93 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
94 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
91 9.8
7.5 		CRITICAL
Network 		Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0718 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:42
2016-05-27 		Show GitHub Exploit DB Packet Storm
92 5.6
6.8 		MEDIUM
Network 		Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0264 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:41
2016-05-25 		Show GitHub Exploit DB Packet Storm
93 5.5
4.3 		MEDIUM
Local 		The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-3718 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2026-04-22 23:35
2016-05-6 		Show GitHub Exploit DB Packet Storm
94 5.5
5.8 		MEDIUM
Local 		The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image. NVD-CWE-noinfo
CWE-552
 Files or Directories Accessible to External Parties 		CVE-2016-3715 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2026-04-22 23:35
2016-05-6 		Show GitHub Exploit DB Packet Storm
95 4.6
4.9 		MEDIUM
Physics 		The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or… CWE-476
 NULL Pointer Dereference 		CVE-2016-2782 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:48
2016-04-28 		Show GitHub Exploit DB Packet Storm
96 6.8
7.2 		MEDIUM
Physics 		The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a … NVD-CWE-Other
CVE-2015-8816 cpe:2.3:o:suse:linux_enterprise_server:12:* 2024-11-21 11:39
2016-04-28 		Show GitHub Exploit DB Packet Storm
97 9.8
10.0 		CRITICAL
Network 		Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vector… NVD-CWE-noinfo
CWE-284
Improper Access Control 		CVE-2016-3427 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2026-04-22 22:41
2016-04-21 		Show GitHub Exploit DB Packet Storm
98 4.1
1.7 		MEDIUM
Local 		Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0.x before 10.0.24 and 10.1.x before 10.1.12 allows local users to affect availability via vectors r… NVD-CWE-noinfo
CVE-2016-0668 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:- 		2024-11-21 11:42
2016-04-21 		Show GitHub Exploit DB Packet Storm
99 5.5
3.5 		MEDIUM
Local 		Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer. NVD-CWE-noinfo
CVE-2016-0651 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:42
2016-04-21 		Show GitHub Exploit DB Packet Storm
100 4.7
4.3 		MEDIUM
Local 		Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated. NVD-CWE-noinfo
CVE-2016-0642 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:42
2016-04-21 		Show GitHub Exploit DB Packet Storm