Skip to content

CVE-2011-3180

kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown.

Ver en NVD

Severidad

N/A

EPSS

Probabilidad de explotación (próx. 30 días): 0.0149 (1.5%)
Percentil: 81.1%
EPSS: 2026-05-06

Afecta

suse:kiwisuse:studio_extension_for_system_zsuse:studio_onsite

Descripción técnica

kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown.

Publicada: 16/4/2014, 18:37:09
Última modificación: 6/5/2026, 22:30:45

Referencias

InicioEventosBlogRecursosEquipo