SUSE update for release-notes-susemanager, release-notes-susemanager-proxy
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2021-44906 CVE-2022-21952 CVE-2022-31248 |
| CWE-ID | CWE-400 CWE-770 CWE-209 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
SUSE Manager Retail Branch Server Operating systems & Components / Operating system SUSE Manager Server Operating systems & Components / Operating system SUSE Manager Proxy Operating systems & Components / Operating system release-notes-susemanager-proxy Operating systems & Components / Operating system package or component release-notes-susemanager Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Resource exhaustion
EUVDB-ID: #VU64030
Risk: High
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-44906
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to escalate privileges on the system.
The vulnerability exists due to application does not properly control consumption of internal resources. A remote attacker can trick the library into adding or modifying the properties of Object.prototype, using a constructor or __proto__ payload, resulting in prototype pollution and loss of confidentiality, availability, and integrity.
MitigationUpdate the affected package release-notes-susemanager, release-notes-susemanager-proxy to the latest version.
Vulnerable software versionsSUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
release-notes-susemanager-proxy: before 4.2.7-150300.3.31.2
release-notes-susemanager: before 4.2.7-150300.3.44.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20222146-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU64571
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-21952
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to the "/rhn/manager/frontend-log" script takes a text as a POST parameter and then it writes into the "/var/log/rhn/rhn_web_frontend.log" file. A remote non-authenticated attacker can send arbitrary amount of data to the application log and consume all available disk space, cause a denial of service condition.
Update the affected package release-notes-susemanager, release-notes-susemanager-proxy to the latest version.
Vulnerable software versionsSUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
release-notes-susemanager-proxy: before 4.2.7-150300.3.31.2
release-notes-susemanager: before 4.2.7-150300.3.44.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20222146-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Information Exposure Through an Error Message
EUVDB-ID: #VU64572
Risk: Low
CVSSv3.1: 3.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-31248
CWE-ID:
CWE-209 - Information Exposure Through an Error Message
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to enumerate email addresses of registered users.
The vulnerability exists due to the application in /rhn/help/ForgotCredentials.do exposes information about pretense of an email address of the registered user within the application. A remote non-authenticated attacker can enumerate email addresses of application users.
Update the affected package release-notes-susemanager, release-notes-susemanager-proxy to the latest version.
Vulnerable software versionsSUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Manager Proxy: 4.2
release-notes-susemanager-proxy: before 4.2.7-150300.3.31.2
release-notes-susemanager: before 4.2.7-150300.3.44.1
External linkshttp://www.suse.com/support/update/announcement/2022/suse-su-20222146-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
