libzypp .repo files can have an optional path which can...

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Description

A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.

Basic Information

ID CVE-2026-44942

Source suse

Published Jun 18, 2026 at 09:57

Modified Jun 18, 2026 at 12:09

Affected Product

Vendor SUSE

Product libzypp

Version 17.0.0

Affected Versions SUSE libzypp 17.0.0
SUSE libzypp 0

CWE Classification

CWE-24

References

{
    "lastseen": "",
    "description": "A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.",
    "published": "2026-06-18T09:57:12.821Z",
    "modified": "2026-06-18T12:09:37.292Z",
    "type": "cve",
    "title": "libzypp .repo files can have an optional path which can lead to path traversal attacks",
    "source": "suse",
    "references": "https://bugzilla.suse.com/show_bug.cgi?id=1267874\nhttps://www.suse.com/security/cve/CVE-2026-44942.html",
    "id": "CVE-2026-44942",
    "bulletinFamily": "",
    "cwe": [
        "CWE-24"
    ],
    "cvelist": null,
    "sourceData": "SUSE libzypp 17.0.0\nSUSE libzypp 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "libzypp",
    "version": "17.0.0",
    "vendor": "SUSE",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

libzypp .repo files can have an optional path which can lead to path traversal attacks_CVE-2026-44942