CVE-2023-32182

A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 postfix, SUSE openSUSE Leap 15.5 postfix.This issue affects SUSE Linux Enterprise Desktop 15 SP5: before 3.7.3-150500.3.5.1; SUSE Linux Enterprise High Performance Computing 15 SP5: before 3.7.3-150500.3.5.1; openSUSE Leap 15.5 : before 3.7.3-150500.3.5.1.

Published: Sep 19, 2023
Updated: Sep 26, 2023
CVE: CVE-2023-32182
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-59

Affected Software
References

Software	From	Fixed in
opensuse / leap	15.5	15.5.x
suse / suse_linux_enterprise_desktop	15-sp5	15-sp5.x
suse / linux_enterprise_high_performance_computing	15.0-sp5	15.0-sp5.x

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32182

Vulnerability Database

289,599

CVE-2023-32182