Vulnerabilities > RPM > RPM > 4.14.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-08-13 | CVE-2017-7500 | Link Following vulnerability in RPM 4.13.0.1/4.14.0.0 It was found that rpm did not properly handle RPM installations when a destination path was a symbolic link to a directory, possibly changing ownership and permissions of an arbitrary directory, and RPM files being placed in an arbitrary destination. | 7.2 |