CVE-2020-8032
published 2021-02-25CVE-2020-8032: A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects…
high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | cyrus-sasl2 | — | — |
| msrc | cbl2_cyrus-sasl_2.1.27-10_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_cyrus-sasl_2.1.27-4_on_cbl_mariner_1.0 | — | — |
| opensuse | cyrus-sasl | <= 2.1.27 | — |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | cyrus-sasl | >= 0 < 0 | 0 |
| opensuse | factory | cyrus-sasl – 2.1.27-4.2 | — |
CVSS provenance
nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.0HIGH