obs-service-tar_scm

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2018-12476	SUSE S.A. Linux Enterprise Server		0.00	—	0.00		Jan 27, 2020	Relative Path Traversal vulnerability in obs-service-tar_scm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects:…
CVE-2018-12474	OpenSUSE Build service		0.00	—	0.00		Oct 9, 2018	Improper input validation in obs-service-tar_scm of Open Build Service allows remote attackers to cause access and extract information outside the current build or cause the creation of file in attacker controlled locations. Affected releases are openSUSE Open Build Service:…

CVE-2018-12476Jan 27, 2020
SUSE S.A.
Linux Enterprise Server
risk 0.00cvss —epss 0.00
Relative Path Traversal vulnerability in obs-service-tar_scm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects:…
CVE-2018-12474Oct 9, 2018
OpenSUSE
Build service
risk 0.00cvss —epss 0.00
Improper input validation in obs-service-tar_scm of Open Build Service allows remote attackers to cause access and extract information outside the current build or cause the creation of file in attacker controlled locations. Affected releases are openSUSE Open Build Service:…