Security Advisory

CVE-2018-19639

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-05 16:00:00

Last updated 2024-09-16 20:43:12

Assigner microfocus

State PUBLISHED

Description

If supportutils before version 3.1-5.7.1 is run with -v to perform rpm verification and the attacker manages to manipulate the rpm listing (e.g. with CVE-2018-19638) he can execute arbitrary commands as root.

← Browse all CVEs View on cve.org ↗