Vulnerability in Opensuse Factory
CVE-2020-8032
A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4.2 and prior versions.
EPSS: 0.001 (32.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.7 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N.
Affected products
- Opensuse Factory — versions cyrus-sasl
Weakness classification (CWE)
References
- bugzilla.suse.com/show_bug.cgi (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2020-8032?
- CVE-2020-8032 is a medium-severity vulnerability in Opensuse Factory, classified under Insecure Temporary File. CVSS score: 6.7/10. Published 2021-02-25.
- How severe is CVE-2020-8032?
- Medium severity. CVSS v3 base score is 6.7 out of 10.