DEBIAN-CVE-2017-9271 — Vulnetix

DEBIAN-CVE-2017-9271 PUBLISHED CVSS 3.299999952316284 LOW

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used.

Risk Scores

CVSS v3.1

3.299999952316284

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
Debian:14	libzypp	0, 0, 0
Debian:12	libzypp	0, 0, 0
Debian:13	libzypp	0, 0, 0
Debian:11	libzypp	0, 0, 0

Timeline

Mar 1, 2018 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2017-9271 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›