CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
74.4%
Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows attackers to have an unknown impact via a crafted directory pathname that is inserted into config.sh.
Vendor | Product | Version | CPE |
---|---|---|---|
marcus_schafer | kiwi | * | cpe:2.3:a:marcus_schafer:kiwi:*:*:*:*:*:*:*:* |
novell | suse_studio_onsite | 1.1 | cpe:2.3:a:novell:suse_studio_onsite:1.1:*:*:*:*:*:*:* |