CVE-2026-44942

MEDIUM 6.5

libzypp .repo files can have an optional path which can lead to path traversal attacks

CVSS Score

6.5

EPSS Score

0.0%

EPSS Percentile

0th

A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.

CWE	CWE-24
Vendor	suse
Product	libzypp
Published	Jun 18, 2026

Stay Ahead of the Next One

Get instant alerts for suse libzypp

Be the first to know when new medium vulnerabilities affecting suse libzypp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

SUSE / libzypp

17.0.0 < 17.38.13 0 < 16.22.19

References

NVD ↗ CVE.org ↗ EPSS Data ↗

bugzilla.suse.com: https://bugzilla.suse.com/show_bug.cgi?id=1267874 suse.com: https://www.suse.com/security/cve/CVE-2026-44942.html

Credits

Michael Andres