Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
EUVDB-ID: #VU83977
Risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-31582
CWE-ID:
CWE-331 - Insufficient Entropy
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to brute-force JWT token.
The vulnerability exists due to usage of insufficient entropy when generating JWT token. A remote attacker can brute-force the JWT token and gain unauthorized access to the application.
Update the affected package Maintenance update for SUSE Manager 4.3: Server, Proxy and Retail Branch Server to the latest version.
Vulnerable software versionsSUSE Manager Proxy Module: 4.3
SUSE Manager Server Module: 4.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
susemanager-tools: before 4.3.34-150400.3.45.5
inter-server-sync-debuginfo: before 0.3.2-150400.3.27.5
patterns-suma_server: before 4.3-150400.5.9.5
susemanager: before 4.3.34-150400.3.45.5
prometheus-postgres_exporter: before 0.10.1-150400.3.9.5
inter-server-sync: before 0.3.2-150400.3.27.5
patterns-suma_retail: before 4.3-150400.5.9.5
spacewalk-taskomatic: before 4.3.71-150400.3.74.2
spacewalk-backend-package-push-server: before 4.3.27-150400.3.38.2
saltboot-formula: before 0.1.1701196218.b6b8ca1-150400.3.15.3
spacewalk-backend-server: before 4.3.27-150400.3.38.2
prometheus-formula: before 0.8.0-150400.3.6.5
spacewalk-backend-sql: before 4.3.27-150400.3.38.2
susemanager-docs_en-pdf: before 4.3-150400.9.53.5
susemanager-schema-utility: before 4.3.24-150400.3.36.7
spacewalk-backend-xmlrpc: before 4.3.27-150400.3.38.2
liberate-formula: before 0.1.0-150400.10.3.3
jose4j: before 0.5.1-150400.3.6.2
spacewalk-backend-iss-export: before 4.3.27-150400.3.38.2
subscription-matcher: before 0.35-150400.3.19.5
spacewalk-backend-xml-export-libs: before 4.3.27-150400.3.38.2
spacewalk-backend-sql-postgresql: before 4.3.27-150400.3.38.2
spacewalk-backend-config-files-tool: before 4.3.27-150400.3.38.2
supportutils-plugin-susemanager: before 4.3.10-150400.3.18.5
spacewalk-java-postgresql: before 4.3.71-150400.3.74.2
grafana-formula: before 0.10.0-150400.3.15.5
spacewalk-base: before 4.3.37-150400.3.39.7
spacewalk-html: before 4.3.37-150400.3.39.7
spacewalk-java: before 4.3.71-150400.3.74.2
susemanager-schema: before 4.3.24-150400.3.36.7
susemanager-docs_en: before 4.3-150400.9.53.5
uyuni-reportdb-schema: before 4.3.9-150400.3.12.7
spacewalk-backend-config-files-common: before 4.3.27-150400.3.38.2
spacewalk-utils-extras: before 4.3.19-150400.3.21.5
spacewalk-setup: before 4.3.19-150400.3.30.5
cobbler: before 3.3.3-150400.5.39.5
spacewalk-java-lib: before 4.3.71-150400.3.74.2
spacewalk-backend-config-files: before 4.3.27-150400.3.38.2
susemanager-sync-data: before 4.3.16-150400.3.22.2
spacewalk-utils: before 4.3.19-150400.3.21.5
spacewalk-backend-app: before 4.3.27-150400.3.38.2
spacewalk-backend-applet: before 4.3.27-150400.3.38.2
uyuni-config-modules: before 4.3.40-150400.3.44.1
susemanager-sls: before 4.3.40-150400.3.44.1
spacewalk-backend-tools: before 4.3.27-150400.3.38.2
spacewalk-backend-iss: before 4.3.27-150400.3.38.2
spacewalk-java-config: before 4.3.71-150400.3.74.2
patterns-suma_proxy: before 4.3-150400.5.9.5
python3-spacewalk-client-tools: before 4.3.18-150400.3.24.7
spacewalk-certs-tools: before 4.3.22-150400.3.25.1
python3-spacewalk-certs-tools: before 4.3.22-150400.3.25.1
spacewalk-backend: before 4.3.27-150400.3.38.2
spacewalk-base-minimal-config: before 4.3.37-150400.3.39.7
spacewalk-client-setup: before 4.3.18-150400.3.24.7
spacecmd: before 4.3.26-150400.3.33.5
python3-spacewalk-client-setup: before 4.3.18-150400.3.24.7
python3-spacewalk-check: before 4.3.18-150400.3.24.7
spacewalk-check: before 4.3.18-150400.3.24.7
susemanager-build-keys-web: before 15.4.10-150400.3.23.5
spacewalk-client-tools: before 4.3.18-150400.3.24.7
susemanager-build-keys: before 15.4.10-150400.3.23.5
mgr-daemon: before 4.3.8-150400.3.12.5
spacewalk-base-minimal: before 4.3.37-150400.3.39.7
External linkshttp://www.suse.com/support/update/announcement/2024/suse-su-20240485-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU86618
Risk: Medium
CVSSv3.1: 5.9 [CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-32189
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform directory traversal attacks.
The vulnerability exists due to input validation error in SUSE Manager when processing directory traversal sequences in the private SSH key file name when creating a new user. A remote user can pass a specially crafted filename to the application and overwrite arbitrary files on the system.
Update the affected package Maintenance update for SUSE Manager 4.3: Server, Proxy and Retail Branch Server to the latest version.
Vulnerable software versionsSUSE Manager Proxy Module: 4.3
SUSE Manager Server Module: 4.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
susemanager-tools: before 4.3.34-150400.3.45.5
inter-server-sync-debuginfo: before 0.3.2-150400.3.27.5
patterns-suma_server: before 4.3-150400.5.9.5
susemanager: before 4.3.34-150400.3.45.5
prometheus-postgres_exporter: before 0.10.1-150400.3.9.5
inter-server-sync: before 0.3.2-150400.3.27.5
patterns-suma_retail: before 4.3-150400.5.9.5
spacewalk-taskomatic: before 4.3.71-150400.3.74.2
spacewalk-backend-package-push-server: before 4.3.27-150400.3.38.2
saltboot-formula: before 0.1.1701196218.b6b8ca1-150400.3.15.3
spacewalk-backend-server: before 4.3.27-150400.3.38.2
prometheus-formula: before 0.8.0-150400.3.6.5
spacewalk-backend-sql: before 4.3.27-150400.3.38.2
susemanager-docs_en-pdf: before 4.3-150400.9.53.5
susemanager-schema-utility: before 4.3.24-150400.3.36.7
spacewalk-backend-xmlrpc: before 4.3.27-150400.3.38.2
liberate-formula: before 0.1.0-150400.10.3.3
jose4j: before 0.5.1-150400.3.6.2
spacewalk-backend-iss-export: before 4.3.27-150400.3.38.2
subscription-matcher: before 0.35-150400.3.19.5
spacewalk-backend-xml-export-libs: before 4.3.27-150400.3.38.2
spacewalk-backend-sql-postgresql: before 4.3.27-150400.3.38.2
spacewalk-backend-config-files-tool: before 4.3.27-150400.3.38.2
supportutils-plugin-susemanager: before 4.3.10-150400.3.18.5
spacewalk-java-postgresql: before 4.3.71-150400.3.74.2
grafana-formula: before 0.10.0-150400.3.15.5
spacewalk-base: before 4.3.37-150400.3.39.7
spacewalk-html: before 4.3.37-150400.3.39.7
spacewalk-java: before 4.3.71-150400.3.74.2
susemanager-schema: before 4.3.24-150400.3.36.7
susemanager-docs_en: before 4.3-150400.9.53.5
uyuni-reportdb-schema: before 4.3.9-150400.3.12.7
spacewalk-backend-config-files-common: before 4.3.27-150400.3.38.2
spacewalk-utils-extras: before 4.3.19-150400.3.21.5
spacewalk-setup: before 4.3.19-150400.3.30.5
cobbler: before 3.3.3-150400.5.39.5
spacewalk-java-lib: before 4.3.71-150400.3.74.2
spacewalk-backend-config-files: before 4.3.27-150400.3.38.2
susemanager-sync-data: before 4.3.16-150400.3.22.2
spacewalk-utils: before 4.3.19-150400.3.21.5
spacewalk-backend-app: before 4.3.27-150400.3.38.2
spacewalk-backend-applet: before 4.3.27-150400.3.38.2
uyuni-config-modules: before 4.3.40-150400.3.44.1
susemanager-sls: before 4.3.40-150400.3.44.1
spacewalk-backend-tools: before 4.3.27-150400.3.38.2
spacewalk-backend-iss: before 4.3.27-150400.3.38.2
spacewalk-java-config: before 4.3.71-150400.3.74.2
patterns-suma_proxy: before 4.3-150400.5.9.5
python3-spacewalk-client-tools: before 4.3.18-150400.3.24.7
spacewalk-certs-tools: before 4.3.22-150400.3.25.1
python3-spacewalk-certs-tools: before 4.3.22-150400.3.25.1
spacewalk-backend: before 4.3.27-150400.3.38.2
spacewalk-base-minimal-config: before 4.3.37-150400.3.39.7
spacewalk-client-setup: before 4.3.18-150400.3.24.7
spacecmd: before 4.3.26-150400.3.33.5
python3-spacewalk-client-setup: before 4.3.18-150400.3.24.7
python3-spacewalk-check: before 4.3.18-150400.3.24.7
spacewalk-check: before 4.3.18-150400.3.24.7
susemanager-build-keys-web: before 15.4.10-150400.3.23.5
spacewalk-client-tools: before 4.3.18-150400.3.24.7
susemanager-build-keys: before 15.4.10-150400.3.23.5
mgr-daemon: before 4.3.8-150400.3.12.5
spacewalk-base-minimal: before 4.3.37-150400.3.39.7
External linkshttp://www.suse.com/support/update/announcement/2024/suse-su-20240485-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.