Vulnerability Details CVE-2020-10870
Zim through 0.72.1 creates temporary directories with predictable names. A malicious user could predict and create Zim's temporary directories and prevent other users from being able to start Zim, resulting in a denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
Products affected by CVE-2020-10870
-
cpe:2.3:a:zim-wiki:zim:0.42
-
cpe:2.3:a:zim-wiki:zim:0.43
-
cpe:2.3:a:zim-wiki:zim:0.44
-
cpe:2.3:a:zim-wiki:zim:0.45
-
cpe:2.3:a:zim-wiki:zim:0.46
-
cpe:2.3:a:zim-wiki:zim:0.47
-
cpe:2.3:a:zim-wiki:zim:0.48
-
cpe:2.3:a:zim-wiki:zim:0.49
-
cpe:2.3:a:zim-wiki:zim:0.50
-
cpe:2.3:a:zim-wiki:zim:0.51
-
cpe:2.3:a:zim-wiki:zim:0.52
-
cpe:2.3:a:zim-wiki:zim:0.53
-
cpe:2.3:a:zim-wiki:zim:0.54
-
cpe:2.3:a:zim-wiki:zim:0.55
-
cpe:2.3:a:zim-wiki:zim:0.56
-
cpe:2.3:a:zim-wiki:zim:0.57
-
cpe:2.3:a:zim-wiki:zim:0.58
-
cpe:2.3:a:zim-wiki:zim:0.59
-
cpe:2.3:a:zim-wiki:zim:0.60
-
cpe:2.3:a:zim-wiki:zim:0.61
-
cpe:2.3:a:zim-wiki:zim:0.62
-
cpe:2.3:a:zim-wiki:zim:0.63
-
cpe:2.3:a:zim-wiki:zim:0.64
-
cpe:2.3:a:zim-wiki:zim:0.65
-
cpe:2.3:a:zim-wiki:zim:0.66
-
cpe:2.3:a:zim-wiki:zim:0.67
-
cpe:2.3:a:zim-wiki:zim:0.68
-
cpe:2.3:a:zim-wiki:zim:0.69
-
cpe:2.3:a:zim-wiki:zim:0.69.1
-
cpe:2.3:a:zim-wiki:zim:0.70
-
cpe:2.3:a:zim-wiki:zim:0.71.0
-
cpe:2.3:a:zim-wiki:zim:0.71.1
-
cpe:2.3:a:zim-wiki:zim:0.72.0
-
cpe:2.3:a:zim-wiki:zim:0.72.1