CVE-2011-0993

Published: Apr 16, 2014Modified: May 6, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

SUSE Lifecycle Management Server before 1.1 uses world readable postgres credentials, which allows local users to obtain sensitive information via unspecified vectors.

Affected (1)

Products: Novell: Suse Lifecycle Management Server

Novell

1 product

Suse Lifecycle Management Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Lifecycle Management Server	Up to 1.0

Related CWEs

CWE-264

References (4)

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/95697

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/95697

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.