CVE-2010-3912
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.
La secuencia de comandos en supportconfig en supportutils en el SP3 de SUSE Linux Enterprise v11 Service Pack 1 y 10 no "disfraza contraseƱas" en los archivos de configuraciĆ³n, que tiene un impacto y vectores de ataque desconocidos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-10-12 CVE Reserved
- 2011-01-12 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-255: Credentials Management Errors
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/70405 | Vdb Entry | |
| http://secunia.com/advisories/42877 | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2011/0076 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/64690 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html | 2017-08-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Novell Search vendor "Novell" | Suse Linux Search vendor "Novell" for product "Suse Linux" | 10 Search vendor "Novell" for product "Suse Linux" and version "10" | sp3, enterprise |
Affected
| ||||||
| Novell Search vendor "Novell" | Suse Linux Search vendor "Novell" for product "Suse Linux" | 11 Search vendor "Novell" for product "Suse Linux" and version "11" | sp1, enterprise |
Affected
| ||||||