All 4 CVE vulnerabilities found in libzypp, with AI-generated Chinese analysis, references, and POCs.
Vendor: SUSE
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2018-7685 | libzypp does not reevaluate malicious rpms once downloaded CWE-358 | 9.8 | - | 2018-08-31 |
| CVE-2017-7435 | libzypp accepts unsigned 3rd party repo without warning | 8.1 | - | 2018-03-01 |
| CVE-2017-7436 | libzypp accepts unsigned packages even when configured to check signatures | 8.1 | - | 2018-03-01 |
| CVE-2017-9269 | lack of keypinning in libzypp could lead to repository switching | 9.8 | - | 2018-03-01 |
All 4 known CVE vulnerabilities affecting libzypp with full Chinese analysis, references, and POCs where available.