VDB
GCVE-110-MAGEIA-2020-429
GCVE-110-MAGEIA-2020-429
Advisory Published
It was discovered that librepo was subject to a directory traversal vulnerability
where it failed to sanitize paths in remote repository metadata. An attacker
controlling a remote repository may be able to copy files outside of the
destination directory on the targeted system via path traversal. This flaw
could potentially result in system compromise via the overwriting of critical
system files (CVE-2020-14352).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | librepo | 0 (affected), 1.10.3-1.1.mga7 (unaffected) | — |
References
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.