Vulnerability Details CVE-2010-3912
The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.3%
CVSS Severity
CVSS v2 Score 10.0
References
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
- http://osvdb.org/70405
- http://secunia.com/advisories/42877
- http://www.vupen.com/english/advisories/2011/0076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64690
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
- http://osvdb.org/70405
- http://secunia.com/advisories/42877
- http://www.vupen.com/english/advisories/2011/0076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64690
Products affected by CVE-2010-3912
-
cpe:2.3:o:novell:suse_linux:10
-
cpe:2.3:o:novell:suse_linux:11