CNNVD-202510-4237 Information

CNNVD ID

CNNVD-202510-4237

Related CVE

CVE-2025-53883

• CNNVD Published: 2025-10-30

Description (Chinese)

SUSE Manager和SUSE Manager Server都是德国SUSE公司的产品。SUSE Manager是一套Linux服务器管理系统。该系统提供自动化软件管理、系统配置和监控等功能。SUSE Manager Server是一种基础设施管理解决方案，旨在简化和确保各种 Linux 发行版的管理。 SUSE多款产品存在安全漏洞，该漏洞源于搜索字段中反射型跨站脚本问题，可能导致执行任意javascript代码。以下产品及版本受到影响：SUSE Manager Proxy 4.3 LTS版本、SUSE Manager Retail Branch Server 4.3版本、SUSE Manager Retail Branch Server 4.3 LTS版本、SUSE Manager Server 4.3版本。

Description (English)

SUSE Manager and SUSE Manager Server are products of SUSE Germany. SUSE Manager is a Linux server management system. The system provides automated software management, system configuration and monitoring. SUSE Manager Server is an infrastructure management solution designed to simplify and ensure the management of various Linux releases. There is a safety loophole in the SUSE multi-products, which stems from the problem of the reflector-type cross-site script in the search field and may lead to the implementation of any javascript code. The following products and versions were affected: SOSE Manager Proxy 4.3 LTS, SUSE Manager Retail Branch Server 4.3, SUSE Manager Retail Branch Server 4.3 LTS, SOSE Manager Server 4.3.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

SUSE

Published

2025-10-30

Last Modified

2026-02-24

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-53883

Patch

https://www.suse.com/support/update/announcement/2025/suse-su-20253827-1/