SUSE CVE-2020-10997

🗓️ 15 Feb 2023 04:00:04Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 2 Views

SUSE advisory: Percona XtraBackup before 2.4.20 writes the run command line to backups and history table.

Reporter	Title	Published	Views	Family All 18
ATTACKERKB	CVE-2022-26944	2 Jun 202218:15	–	attackerkb
Circl	CVE-2020-10997	2 Jun 202222:25	–	circl
CNVD	Percona XtraBackup Input Validation Error Vulnerability	28 Apr 202000:00	–	cnvd
CVE	CVE-2020-10997	27 Apr 202012:38	–	cve
Cvelist	CVE-2020-10997	27 Apr 202012:38	–	cvelist
EUVD	EUVD-2020-3394	7 Oct 202500:30	–	euvd
NVD	CVE-2020-10997	27 Apr 202013:15	–	nvd
Tenable Nessus	openSUSE 15 Security Update : xtrabackup (openSUSE-SU-2022:10212-1)	24 Nov 202200:00	–	nessus
OPENSUSE Linux	Security update for xtrabackup (moderate)	23 Nov 202200:00	–	opensuse
OSV	BIT-PERCONA-XTRABACKUP-2020-10997	6 Mar 202411:01	–	osv

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Leap	15.4	any	xtrabackup	2.4.26-bp154.2.3.1	xtrabackup-2.4.26-bp154.2.3.1.noarch.rpm
SUSE Linux Enterprise Server	15.4	any	xtrabackup	2.4.26-bp154.2.3.1	xtrabackup-2.4.26-bp154.2.3.1.noarch.rpm
OpenSUSE Leap	15.4	any	xtrabackup-test	2.4.26-bp154.2.3.1	xtrabackup-test-2.4.26-bp154.2.3.1.noarch.rpm
SUSE Linux Enterprise Server	15.4	any	xtrabackup-test	2.4.26-bp154.2.3.1	xtrabackup-test-2.4.26-bp154.2.3.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2020-10997
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1170644
bugzilla	www.bugzilla.suse.com/1200484
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/U3RTDTIXGJ3RCHKJUZNBA3BXYPTFKTB7/

10 Aug 2025 23:31Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.14

EPSS0.00951

Percona XtraBackup backup outputs command line exposure history table sensitive arguments SUSE advisory