Search Results (Refine Search)
- CPE Product Version: cpe:/o:suse:suse_linux_enterprise_server:11:sp1:~~~sap_aio~~
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2011-4190 |
The kdump implementation is missing the host key verification in the kdump and mkdumprd OpenSSH integration of kdump prior to version 2012-01-20. This is similar to CVE-2011-3588, but different in that the kdump implementation is specific to SUSE. A remote malicious kdump server could use this flaw to impersonate the correct kdump server to obtain security sensitive information (kdump core files). Published: June 08, 2018; 1:29:00 PM -0400 |
V3.0: 5.3 MEDIUM V2.0: 3.5 LOW |