Unrated severityNVD Advisory· Published Apr 16, 2014· Updated Jun 16, 2026
CVE-2011-4192
CVE-2011-4192
Description
kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands as demonstrated by "double quotes in kiwi_oemtitle of .profile."
Affected products
4- cpe:2.3:a:suse:studio_extension_for_system_z:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:suse:studio_onsite:1.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1- lists.opensuse.org/opensuse-security-announce/2011-12/msg00015.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.