{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-13T11:16:03.448","vulnerabilities":[{"cve":{"id":"CVE-2022-21950","sourceIdentifier":"meissner@suse.de","published":"2022-09-07T09:15:08.670","lastModified":"2024-11-21T06:45:46.067","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE Backports SLE-15-SP4 canna versions prior to 3.7p3-bp154.3.3.1. openSUSE Factory was also affected. Instead of fixing the package it was deleted there."},{"lang":"es","value":"Una vulnerabilidad de Control de Acceso inapropiado en el servicio systemd de cana en openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 permite a usuarios locales secuestrar el socket de dominio UNIX Este problema afecta a: openSUSE Backports SLE-15-SP3 versiones de canna anteriores a canna-3.7p3-bp153.2.3.1. openSUSE Backports SLE-15-SP4 versiones de canna anteriores a 3.7p3-bp154.3.3.1. openSUSE Factory también está afectado. En lugar de arreglar el paquete fue eliminado allí"}],"metrics":{"cvssMetricV31":[{"source":"meissner@suse.de","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":3.4}]},"weaknesses":[{"source":"meissner@suse.de","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opensuse:canna:*:*:*:*:*:*:*:*","versionEndExcluding":"3.7p3-bp153.2.3.1","matchCriteriaId":"627905AC-CD77-4169-B771-A681688BAA3A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:opensuse:backports_sle:15.0:sp3:*:*:*:*:*:*","matchCriteriaId":"4847454B-DCD3-4F32-833E-6E51A90F06E9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opensuse:canna:*:*:*:*:*:*:*:*","versionEndExcluding":"3.7p3-bp154.3.3.1","matchCriteriaId":"345554AF-5541-4D24-8FDB-1F0648F492FE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:opensuse:backports_sle:15.0:sp4:*:*:*:*:*:*","matchCriteriaId":"842598F5-31B5-42D2-930C-B405314217B1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opensuse:canna:3.7p3:*:*:*:*:*:*:*","matchCriteriaId":"C62B2B23-EA58-4EE8-B7AD-4FD074A64332"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:opensuse:factory:-:*:*:*:*:*:*:*","matchCriteriaId":"E29492E1-43D8-43BF-94E3-26A762A66FAA"},{"vulnerable":false,"criteria":"cpe:2.3:o:suse:linux_enterprise:12.0:*:*:*:*:*:*:*","matchCriteriaId":"CBC8B78D-1131-4F21-919D-8AC79A410FB9"}]}]}],"references":[{"url":"https://bugzilla.suse.com/show_bug.cgi?id=1199280","source":"meissner@suse.de","tags":["Issue Tracking","Vendor Advisory"]},{"url":"https://bugzilla.suse.com/show_bug.cgi?id=1199280","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Vendor Advisory"]}]}}]}