VDB
CVE-2012-6076
CVE-2012-6076
PUBLISHED
CVSS 4.400000095367432 MEDIUM
Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might cause Inkspace to process unintended files, allow local users to obtain sensitive information, and possibly have other unspecified impacts.
EPSS 0.12% · 30.4th percentile
Risk Scores
CVSS 2.0
4.400000095367432
EPSS Score
0.12%
30.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| inkscape | inkscape | 0.44.1, 0.42.2, 0 |
Timeline
- Mar 12, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- [oss-security] 20121229 Re: Inkscape reads .eps files from /tmp instead of the current directory mailing-list
- USN-1712-1 vendor-advisory
- https://bugs.launchpad.net/inkscape/+bug/911146 url
- openSUSE-SU-2013:0294 vendor-advisory
- openSUSE-SU-2013:0297 vendor-advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341 url
- https://nvd.nist.gov/vuln/detail/CVE-2012-6076 advisory