Vulnerability Details CVE-2020-8027
A Insecure Temporary File vulnerability in openldap2 of SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Leap 15.2 allows local attackers to overwrite arbitrary files and gain access to the openldap2 configuration This issue affects: SUSE Linux Enterprise Server 15-LTSS openldap2 versions prior to 2.4.46-9.37.1. SUSE Linux Enterprise Server for SAP 15 openldap2 versions prior to 2.4.46-9.37.1. openSUSE Leap 15.1 openldap2 versions prior to 2.4.46-lp151.10.18.1. openSUSE Leap 15.2 openldap2 versions prior to 2.4.46-lp152.14.9.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.0%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 4.6
References
Products affected by CVE-2020-8027
-
cpe:2.3:a:opensuse:openldap2:2.4.26-0.74.13
-
cpe:2.3:a:opensuse:openldap2:2.4.41-18.71.2
-
cpe:2.3:a:opensuse:openldap2:2.4.46-9.31.1
-
cpe:2.3:a:opensuse:openldap2:2.4.46-9.37.1
-
cpe:2.3:a:opensuse:openldap2:2.4.46-lp151.10.18.1
-
cpe:2.3:o:opensuse:leap:15.1
-
cpe:2.3:o:opensuse:leap:15.2
-
cpe:2.3:o:suse:linux_enterprise_server:15