Static Temporary Filename Vulnerability in yast2-multipath Allows Local File Overwrite

Static Temporary Filename Vulnerability in yast2-multipath Allows Local File Overwrite

CVE-2018-17955 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection

Learn more about our Web Application Penetration Testing UK.