CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
18.5%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.4.2023.3822.1");
script_cve_id("CVE-2022-45154");
script_tag(name:"creation_date", value:"2023-09-28 09:48:31 +0000 (Thu, 28 Sep 2023)");
script_version("2024-02-02T14:37:52+0000");
script_tag(name:"last_modification", value:"2024-02-02 14:37:52 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"4.6");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:S/C:C/I:N/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-02-24 18:58:26 +0000 (Fri, 24 Feb 2023)");
script_name("SUSE: Security Advisory (SUSE-SU-2023:3822-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse_sles", "ssh/login/rpms", re:"ssh/login/release=(SLES15\.0SP3)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2023:3822-1");
script_xref(name:"URL", value:"https://www.suse.com/support/update/announcement/2023/suse-su-20233822-1/");
script_tag(name:"summary", value:"The remote host is missing an update for the 'supportutils' package(s) announced via the SUSE-SU-2023:3822-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for supportutils fixes the following issues:
Security fixes:
CVE-2022-45154: Removed iSCSI passwords (bsc#1207598).
Other Fixes:
Changes in version 3.1.26 powerpc plugin to collect the slots and active memory (bsc#1210950)
A Cleartext Storage of Sensitive Information vulnerability CVE-2022-45154 supportconfig: collect BPF information (pr#154)
Added additional iscsi information (pr#155)
Added run time detection (bsc#1213127)
Changes for supportutils version 3.1.25
Removed iSCSI passwords CVE-2022-45154 (bsc#1207598)
powerpc: Collect lsslot,amsstat, and opal elogs (pr#149)
powerpc: collect invscout logs (pr#150)
powerpc: collect RMC status logs (pr#151)
Added missing nvme nbft commands (bsc#1211599)
Fixed invalid nvme commands (bsc#1211598)
Added missing podman information (PED-1703, bsc#1181477)
Removed dependency on sysfstools Check for systool use (bsc#1210015)
Added selinux checking (bsc#1209979)
Updated SLES_VER matrix
Fixed missing status detail for apparmor (bsc#1196933)
Corrected invalid argument list in docker.txt (bsc#1206608)
Applies limit equally to sar data and text files (bsc#1207543)
Collects hwinfo hardware logs (bsc#1208928)
Collects lparnumascore logs (issue#148)
Add dependency to numactl on ppc64le and s390x, this enforces
that numactl --hardware data is provided in supportconfigs
Changes to supportconfig.rc version 3.1.11-35
Corrected _sanitize_file to include iscsi.conf and others (bsc#1206402)
Changes to supportconfig version 3.1.11-46.4
Added plymouth_info
Changes to getappcore version 1.53.02
The location of chkbin was updated earlier. This documents that
change (bsc#1205533, bsc#1204942)");
script_tag(name:"affected", value:"'supportutils' package(s) on SUSE Enterprise Storage 7.1, SUSE Linux Enterprise High Performance Computing 15-SP3, SUSE Linux Enterprise Micro 5.1, SUSE Linux Enterprise Micro 5.2, SUSE Linux Enterprise Micro 5.3, SUSE Linux Enterprise Micro 5.4, SUSE Linux Enterprise Micro for Rancher 5.2, SUSE Linux Enterprise Micro for Rancher 5.3, SUSE Linux Enterprise Micro for Rancher 5.4, SUSE Linux Enterprise Server 15-SP3, SUSE Linux Enterprise Server for SAP Applications 15-SP3, SUSE Manager Proxy 4.2, SUSE Manager Retail Branch Server 4.2, SUSE Manager Server 4.2.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLES15.0SP3") {
if(!isnull(res = isrpmvuln(pkg:"supportutils", rpm:"supportutils~3.1.26~150300.7.35.21.1", rls:"SLES15.0SP3"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
18.5%