CVE-2020-8030

CWE-3773 documents3 sources
Severity
4.4MEDIUM
EPSS
0.0%
top 87.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Suse Suse Caas Platform 4.5Suse Caas Platform
Timeline
PublishedFeb 11
Latest updateMay 24

Description

A Insecure Temporary File vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to leak the bootstrapToken or modify the configuration file before it is processed, leading to arbitrary modifications of the machine/cluster.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:NExploitability: 1.0 | Impact: 2.5

Affected Packages2 packages

CVEListV5suse/suse_caas_platform_4.5suba2.1.7

🔴Vulnerability Details

2
GHSA
GHSA-h8q4-9ggw-gcm9: A Insecure Temporary File vulnerability in skuba of SUSE CaaS Platform 42022-05-24
CVEList
skuba: Insecure /tmp usage when joining node to cluster2021-02-11
CVE-2020-8030 (MEDIUM CVSS 4.4) | A Insecure Temporary File vulnerabi | cvebase.io