CVE-2022-21945

CWE-3773 documents3 sources
Severity
6.1MEDIUM
EPSS
0.0%
top 88.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Opensuse FactoryOpensuse Cscreen
Timeline
PublishedMar 16
Latest updateMar 17

Description

A Insecure Temporary File vulnerability in cscreen of openSUSE Factory allows local attackers to cause DoS for cscreen and a system DoS for non-default systems. This issue affects: openSUSE Factory cscreen version 1.2-1.3 and prior versions.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:LExploitability: 2.5 | Impact: 2.5

Affected Packages2 packages

NVDopensuse/cscreen1.21.3
CVEListV5opensuse/factorycscreen1.2-1.3

🔴Vulnerability Details

2
GHSA
GHSA-xxwq-xf8c-v665: A Insecure Temporary File vulnerability in cscreen of openSUSE Factory allows local attackers to cause DoS for cscreen and a system DoS for non-defaul2022-03-17
CVEList
cscreen: usage of fixed path /tmp/cscreen.debug2022-03-16
CVE-2022-21945 (MEDIUM CVSS 6.1) | A Insecure Temporary File vulnerabi | cvebase.io