Language:
https://bugzilla.suse.com/923946
https://bugzilla.suse.com/935227
https://bugzilla.suse.com/1206958
https://www.suse.com/security/cve/CVE-2014-9709
https://www.suse.com/security/cve/CVE-2015-3411
Severity: Medium
ID: 169986
File Name: suse_SU-2023-0072-1.nasl
Version: 1.5
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 1/12/2023
Updated: 7/14/2023
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Factor: Medium
Score: 4.4
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2015-3411
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.9
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: p-cpe:/a:novell:suse_linux:php74-gmp, p-cpe:/a:novell:suse_linux:php74-intl, p-cpe:/a:novell:suse_linux:php74-gettext, p-cpe:/a:novell:suse_linux:php74-sysvmsg, p-cpe:/a:novell:suse_linux:php74-calendar, p-cpe:/a:novell:suse_linux:php74-fastcgi, p-cpe:/a:novell:suse_linux:php74-bcmath, p-cpe:/a:novell:suse_linux:php74-snmp, p-cpe:/a:novell:suse_linux:php74-ldap, p-cpe:/a:novell:suse_linux:php74-readline, p-cpe:/a:novell:suse_linux:php74-tidy, p-cpe:/a:novell:suse_linux:php74-enchant, p-cpe:/a:novell:suse_linux:php74-sockets, p-cpe:/a:novell:suse_linux:php74-zlib, p-cpe:/a:novell:suse_linux:php74-mysql, p-cpe:/a:novell:suse_linux:php74-iconv, p-cpe:/a:novell:suse_linux:php74-pgsql, p-cpe:/a:novell:suse_linux:php74-odbc, p-cpe:/a:novell:suse_linux:php74-fpm, p-cpe:/a:novell:suse_linux:php74-xmlwriter, p-cpe:/a:novell:suse_linux:php74-mbstring, p-cpe:/a:novell:suse_linux:php74-bz2, p-cpe:/a:novell:suse_linux:php74, p-cpe:/a:novell:suse_linux:php74-sysvshm, p-cpe:/a:novell:suse_linux:php74-xmlrpc, p-cpe:/a:novell:suse_linux:php74-zip, p-cpe:/a:novell:suse_linux:php74-devel, p-cpe:/a:novell:suse_linux:php74-fileinfo, p-cpe:/a:novell:suse_linux:php74-opcache, p-cpe:/a:novell:suse_linux:php74-dom, p-cpe:/a:novell:suse_linux:php74-ctype, p-cpe:/a:novell:suse_linux:php74-json, p-cpe:/a:novell:suse_linux:php74-curl, p-cpe:/a:novell:suse_linux:php74-pcntl, p-cpe:/a:novell:suse_linux:php74-tokenizer, p-cpe:/a:novell:suse_linux:php74-sysvsem, p-cpe:/a:novell:suse_linux:php74-phar, p-cpe:/a:novell:suse_linux:php74-sodium, p-cpe:/a:novell:suse_linux:php74-gd, p-cpe:/a:novell:suse_linux:php74-openssl, p-cpe:/a:novell:suse_linux:php74-shmop, p-cpe:/a:novell:suse_linux:php74-sqlite, cpe:/o:novell:suse_linux:12, p-cpe:/a:novell:suse_linux:apache2-mod_php74, p-cpe:/a:novell:suse_linux:php74-exif, p-cpe:/a:novell:suse_linux:php74-xmlreader, p-cpe:/a:novell:suse_linux:php74-posix, p-cpe:/a:novell:suse_linux:php74-xsl, p-cpe:/a:novell:suse_linux:php74-pdo, p-cpe:/a:novell:suse_linux:php74-soap, p-cpe:/a:novell:suse_linux:php74-ftp, p-cpe:/a:novell:suse_linux:php74-dba
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 1/11/2023
Vulnerability Publication Date: 3/24/2015
CVE: CVE-2014-9709, CVE-2015-3411, CVE-2022-31631
IAVA: 2023-A-0016-S
IAVB: 2015-B-0055-S, 2015-B-0078-S
SuSE: SUSE-SU-2023:0072-1