VDB
CVE-2019-18903
CVE-2019-18903
PUBLISHED
CVSS 7.5 HIGH
A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions prior to 0.6.60-2.18.1. SUSE Linux Enterprise Server 15 wicked versions prior to 0.6.60-28.26.1. openSUSE Leap 15.1 wicked versions prior to 0.6.60-lp151.2.9.1. openSUSE Factory wicked versions prior to 0.6.62.
EPSS 2.82% · 86.4th percentile
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
2.82%
86.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| opensuse | leap | 15.1 |
| SUSE | SUSE Linux Enterprise Server 15 | wicked |
| openSUSE | Factory | wicked |
| SUSE | SUSE Linux Enterprise Server 12 | * |
| suse | linux_enterprise_server | 12, 15 |
| openSUSE | Leap 15.1 | wicked |
Exploit Intelligence
Timeline
- Feb 11, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score