CVE-2018-19640

Summary

If the attacker manages to create files in the directory used to collect log files in supportutils before version 3.1-5.7.1 (e.g. with CVE-2018-19638) he can kill arbitrary processes on the local machine.

Affected Software

VendorProductVersion RangeStatus
SUSEsupportutilsunspecified < 3.1-5.7.1affected

Weaknesses

  • CWE-377: CWE-377

ADP Enrichment

CVE Program Container

Additional References

References