Insecure Temporary File Creation in SUSE Products Affects System Security
CVE-2024-49506

Currently unrated

Key Information:

Vendor: SUSE
Status: SUSE Linux Enterprise
Vendor: CVE Published:; 13 November 2024

What is CVE-2024-49506?

An improper method of creating temporary files in certain SUSE products can be exploited by local users on systems with tailored configurations. This issue exposes the system to denial-of-service conditions and could potentially allow unauthorized manipulation of the encryption key for the filesystem, posing a significant risk to data integrity and accessibility.

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49506

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2024