CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Opensuse: >> Yast2-Printer >> 3.1.3 Security Vulnerabilities

CVE-2018-20106

In yast2-printer up to and including version 4.0.2 the SMB printer settings don't escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast.

CVSS Score

6.5

EPSS Score

0.001

Published

2019-03-15

Page 1

Vulnerabilities

Vulnerable Software

Opensuse: >> Yast2-Printer >> 3.1.3 Security Vulnerabilities

Products

Pricing

Contact Us