Insecure Temporary File Creation in SUSE Products Affects System Security
CVE-2024-49506

Currently unrated

Key Information:

Vendor: SUSE
Status: SUSE Linux Enterprise
Vendor: CVE Published:; 13 November 2024

Summary

An improper method of creating temporary files in certain SUSE products can be exploited by local users on systems with tailored configurations. This issue exposes the system to denial-of-service conditions and could potentially allow unauthorized manipulation of the encryption key for the filesystem, posing a significant risk to data integrity and accessibility.

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49506

Timeline

Vulnerability published
Nov 13, 2024