CVE-2017-9271

Summary

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used.

Affected Software

VendorProductVersion RangeStatus
SUSEzyppern/aaffected

Weaknesses

  • Proxy credentials are writting into logfiles
  • CVE-532

ADP Enrichment

CVE Program Container

Additional References

References