Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Opensuse Subscribe
Filtered by product Libstorage
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-5746 2 Opensuse, Yast 4 Leap, Libstorage, Libstorage-ng and 1 more 2018-10-30 1.2 LOW 5.1 MEDIUM
libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by reading the file, as demonstrated by /tmp/libstorage-XXXXXX/pwdf.