CVE-2022-31248

Name of the Vulnerable Software and Affected Versions SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46-1 SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37-1

Description A Observable Response Discrepancy issue in spacewalk-java of SUSE Manager Server allows remote attackers to discover valid usernames.

Recommendations For SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46-1, update to version 4.1.46-1 or later. For SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37-1, update to version 4.2.37-1 or later.