CVE-2012-0420 in Zypperinfo

Summary

zypp-refresh-wrapper in SUSE Zypper before 1.3.20 and 1.6.x before 1.6.166 allows local users to create files in arbitrary directories, or possibly have unspecified other impact, via a pathname in the ZYPP_LOCKFILE_ROOT environment variable.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/09/2012

Disclosure

12/01/2013

Moderation

VulDB entry created

Entries

VDB-65606 (1)

CPE

ready

CWE

Unknown

CVSS

5.9

EPSS

0.00054

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-0420
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0420
CVE Details	https://www.cvedetails.com/cve/CVE-2012-0420/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!