CVE-2020-8030

Summary

A Insecure Temporary File vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to leak the bootstrapToken or modify the configuration file before it is processed, leading to arbitrary modifications of the machine/cluster.

Affected Software

VendorProductVersion RangeStatus
SUSESUSE CaaS Platform 4.5suba < 2.1.7affected

Weaknesses

  • CWE-377: CWE-377: Insecure Temporary File

ADP Enrichment

CVE Program Container

Additional References

References