{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-10380", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "kwallet-pam in KDE KWallet before 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "DSA-4200", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2018/dsa-4200" }, { "name": "https://commits.kde.org/kwallet-pam/99abc7fde21f40cc6da5feb6ee766cc46fcca1f8", "refsource": "CONFIRM", "url": "https://commits.kde.org/kwallet-pam/99abc7fde21f40cc6da5feb6ee766cc46fcca1f8" }, { "name": "https://bugzilla.suse.com/show_bug.cgi?id=1090863", "refsource": "CONFIRM", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1090863" }, { "name": "https://commits.kde.org/kwallet-pam/01d4143fda5bddb6dca37b23304dc239a5fb38b5", "refsource": "CONFIRM", "url": "https://commits.kde.org/kwallet-pam/01d4143fda5bddb6dca37b23304dc239a5fb38b5" }, { "name": "https://commits.kde.org/kwallet-pam/802f305d81f8771c4f4a8bd7fd0e368ffc6f9b3b", "refsource": "CONFIRM", "url": "https://commits.kde.org/kwallet-pam/802f305d81f8771c4f4a8bd7fd0e368ffc6f9b3b" }, { "name": "https://commits.kde.org/kwallet-pam/2134dec85ce19d6378d03cddfae9e5e464cb24c0", "refsource": "CONFIRM", "url": "https://commits.kde.org/kwallet-pam/2134dec85ce19d6378d03cddfae9e5e464cb24c0" }, { "name": "https://www.kde.org/info/security/advisory-20180503-1.txt", "refsource": "CONFIRM", "url": "https://www.kde.org/info/security/advisory-20180503-1.txt" } ] } }