CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19638

In supportutils, before version 3.1-5.7.1 and if pacemaker is installed on the system, an unprivileged user could have overwritten arbitrary files in the directory that is used by supportutils to collect the log files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.6%

CVSS Severity

CVSS v3 Score 2.2

CVSS v2 Score 3.3

References

http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00018.html
https://bugzilla.suse.com/show_bug.cgi?id=1118460
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00018.html
https://bugzilla.suse.com/show_bug.cgi?id=1118460

Products affected by CVE-2018-19638

Opensuse » Supportutils » Version: 3.0.10-95.51.1

cpe:2.3:a:opensuse:supportutils:3.0.10-95.51.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19638

Products

Pricing

Contact Us