Vulnerabilities > CVE-2020-8032 - Insecure Temporary File vulnerability in Opensuse Cyrus-Sasl

CVSS 6.9 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

opensuse

CWE-377

NVD

Published: 2021-02-25

Updated: 2021-03-03

Summary

A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.

Vulnerable Configurations

Part	Description	Count
Application	Opensuse Opensuse Cyrus Sasl *	1

Common Weakness Enumeration (CWE)

CWE-377 - Insecure Temporary File

References

https://bugzilla.suse.com/show_bug.cgi?id=1180669