Nozomi Matsuzawa

**Name of the Vulnerable Software and Affected Versions** SUSE Linux Enterprise Server 12 supportutils versions 3.0.10-95.51.1 and prior versions SUSE Linux Enterprise Server 15 supportutils versions 3.1.21-150000.5.44.1 and prior versions SUSE Linux Enterprise Server 15 SP3 supportutils versions 3.1.21-150300.7.35.15.1 and prior versions **Description** A Cleartext Storage of Sensitive Information issue in supportutils of SUSE Linux Enterprise Server allows attackers that gain access to the support logs to obtain knowledge of the stored credentials. **Recommendations** For SUSE Linux Enterprise Server 12 supportutils versions 3.0.10-95.51.1 and prior versions, update to a version later than 3.0.10-95.51.1 to resolve the issue. For SUSE Linux Enterprise Server 15 supportutils versions 3.1.21-150000.5.44.1 and prior versions, update to a version later than 3.1.21-150000.5.44.1 to resolve the issue. For SUSE Linux Enterprise Server 15 SP3 supportutils versions 3.1.21-150300.7.35.15.1 and prior versions, update to a version later than 3.1.21-150300.7.35.15.1 to resolve the issue.