vulnerability
SUSE: CVE-2018-12476: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:N/C:N/I:P/A:P) | 2019-03-04 | 2019-03-14 | 2020-03-02 |
Severity
6
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:P)
Published
2019-03-04
Added
2019-03-14
Modified
2020-03-02
Description
Relative Path Traversal vulnerability in obs-service-tar_scm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects: SUSE Linux Enterprise Server 15 obs-service-tar_scm versions prior to 0.9.2.1537788075.fefaa74:. openSUSE Factory obs-service-tar_scm versions prior to 0.9.2.1537788075.fefaa74.
Solution(s)
suse-upgrade-obs-service-appimagesuse-upgrade-obs-service-obs_scmsuse-upgrade-obs-service-obs_scm-commonsuse-upgrade-obs-service-snapcraftsuse-upgrade-obs-service-tarsuse-upgrade-obs-service-tar_scm
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.