vulnerability

SUSE: CVE-2017-12938: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Aug 18, 2017	Apr 4, 2018	Nov 4, 2021

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Aug 18, 2017

Added

Apr 4, 2018

Modified

Nov 4, 2021

Description

UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file.

Solutions

suse-upgrade-libunrar-develsuse-upgrade-libunrar5_6_1suse-upgrade-unrar

References

SUSE-SUSE-SU-2018:0862-1
SUSE-SUSE-SU-2021:2834-1
NVD-CVE-2017-12938

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report