suse · CVE-2014-5030

Quick triage

Priority: medium Published: 2021-05-30 13:22:19 UTC Updated: 2026-04-18 18:36:50 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-5030 severity moderate: SUSE including 176 source package names (cups, cups-1.3.9-8.46.52.2, …), 310 product×package rows across 75 product lines (HPE Helion OpenStack 8, SUSE Linux Enterprise Desktop 11 SP3, … (75 product lines)): Fixed 247, Known Not Affected 63.

Description:

CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py.

cvelogic Threat Intelligence