OBS Service TAR SCM

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-27	CVE-2018-12476	Path Traversal vulnerability in Suse Obs-Service-Tar SCM Relative Path Traversal vulnerability in obs-service-tar_scm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. network low complexity suse CWE-22	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.