{"api_version":"1","generated_at":"2026-06-24T16:29:21+00:00","cve":"CVE-2026-44942","urls":{"html":"https://cve.report/CVE-2026-44942","api":"https://cve.report/api/cve/CVE-2026-44942.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-44942","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-44942"},"summary":{"title":"libzypp .repo files can have an optional path which can lead to path traversal attacks","description":"A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.","state":"PUBLISHED","assigner":"suse","published_at":"2026-06-18 14:17:25","updated_at":"2026-06-22 18:32:57"},"problem_types":["CWE-24","CWE-24 CWE-24 Path traversal: '../filedir'"],"metrics":[{"version":"3.1","source":"meissner@suse.de","type":"Secondary","score":"6.5","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"}},{"version":"3.1","source":"CNA","type":"CVSS","score":"6.5","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","data":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","version":"3.1"}}],"references":[{"url":"https://bugzilla.suse.com/show_bug.cgi?id=1267874","name":"https://bugzilla.suse.com/show_bug.cgi?id=1267874","refsource":"meissner@suse.de","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.suse.com/security/cve/CVE-2026-44942.html","name":"https://www.suse.com/security/cve/CVE-2026-44942.html","refsource":"meissner@suse.de","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-44942","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44942","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"SUSE","product":"libzypp","version":"affected 17.0.0 17.38.13 semver","platforms":[]},{"source":"CNA","vendor":"SUSE","product":"libzypp","version":"affected 16.22.19 semver","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"Michael Andres","lang":"en"}],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"44942","cve":"CVE-2026-44942","epss":"0.003290000","percentile":"0.245020000","score_date":"2026-06-23","updated_at":"2026-06-24 00:09:25"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-44942","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","timestamp":"2026-06-18T12:05:47.827082Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-06-18T12:09:37.292Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","modules":["repo parsing"],"packageName":"libzypp","product":"libzypp","repo":"https://github.com/opensuse/libzypp","vendor":"SUSE","versions":[{"lessThan":"17.38.13","status":"affected","version":"17.0.0","versionType":"semver"},{"lessThan":"16.22.19","status":"affected","version":"0","versionType":"semver"}]}],"credits":[{"lang":"en","type":"finder","value":"Michael Andres"}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."}],"value":"A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."}],"impacts":[{"capecId":"CAPEC-130","descriptions":[{"lang":"en","value":"CAPEC-130 Excessive Allocation"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-24","description":"CWE-24 Path traversal: '../filedir'","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-06-18T09:57:12.821Z","orgId":"404e59f5-483d-4b8a-8e7a-e67604dd8afb","shortName":"suse"},"references":[{"tags":["issue-tracking"],"url":"https://bugzilla.suse.com/show_bug.cgi?id=1267874"},{"tags":["vendor-advisory"],"url":"https://www.suse.com/security/cve/CVE-2026-44942.html"}],"source":{"discovery":"UNKNOWN"},"title":"libzypp .repo files can have an optional path which can lead to path traversal attacks","x_generator":{"engine":"Vulnogram 1.0.2"}}},"cveMetadata":{"assignerOrgId":"404e59f5-483d-4b8a-8e7a-e67604dd8afb","assignerShortName":"suse","cveId":"CVE-2026-44942","datePublished":"2026-06-18T09:57:12.821Z","dateReserved":"2026-05-08T12:29:48.968Z","dateUpdated":"2026-06-18T12:09:37.292Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-18 14:17:25","lastModifiedDate":"2026-06-22 18:32:57","problem_types":["CWE-24","CWE-24 CWE-24 Path traversal: '../filedir'"],"metrics":{"cvssMetricV31":[{"source":"meissner@suse.de","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2026-06-18T12:05:47.827082Z","id":"CVE-2026-44942","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"44942","Ordinal":"1","Title":"libzypp .repo files can have an optional path which can lead to ","CVE":"CVE-2026-44942","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"44942","Ordinal":"1","NoteData":"A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.","Type":"Description","Title":"libzypp .repo files can have an optional path which can lead to "}]}}}