CVE-2015-1197 is a vulnerability in GNU Cpio
Published on February 19, 2015

cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2015-1197

Want to know whenever a new CVE is published for GNU Cpio? stack.watch will email you.

GNU Cpio

Exploit Probability

EPSS

3.33%

Percentile

87.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-1197 is a vulnerability in GNU CpioPublished on February 19, 2015

Products Associated with CVE-2015-1197

Exploit Probability

CVE-2015-1197 is a vulnerability in GNU Cpio
Published on February 19, 2015