Vulnerability in Novell Suse_linux

CVE-2010-3912

The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.

EPSS: 0.002 (48.3th percentile) — read the EPSS interpretation.

Affected products

Novell Suse_linux — versions 10, 11
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

SUSE-SR:2011:001 (vendor-advisory, x_refsource_SUSE)
suse-linux-supportconfig-unspecified(64690) (vdb-entry, x_refsource_XF)
42877 (x_refsource_SECUNIA, third-party-advisory)
70405 (x_refsource_OSVDB, vdb-entry)
ADV-2011-0076 (vdb-entry, x_refsource_VUPEN)