CVE-2017-5188 is a vulnerability in OpenSuse Open Build Service
Published on March 1, 2018

OBS worker VM escape via relative symbolic links
The bs_worker code in open build service before 20170320 followed relative symlinks, allowing reading of files outside of the package source directory during build, allowing leakage of private information.

NVD

Products Associated with CVE-2017-5188

Want to know whenever a new CVE is published for OpenSuse Open Build Service? stack.watch will email you.

OpenSuse Open Build Service

Affected Versions

openSUSE open build service:

Version unspecified and below 20170320 is affected.

Exploit Probability

EPSS

0.15%

Percentile

36.02%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-5188 is a vulnerability in OpenSuse Open Build ServicePublished on March 1, 2018

Products Associated with CVE-2017-5188

Affected Versions

Exploit Probability

CVE-2017-5188 is a vulnerability in OpenSuse Open Build Service
Published on March 1, 2018