CVE-2012-6076

Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might cause Inkspace to process unintended files, allow local users to obtain sensitive information, and possibly have other unspecified impacts.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.4 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
inkscapeinkscape
𝑥
≤ 0.48.3.1
inkscapeinkscape
0.37
inkscapeinkscape
0.38.1
inkscapeinkscape
0.39
inkscapeinkscape
0.40
inkscapeinkscape
0.41
inkscapeinkscape
0.42
inkscapeinkscape
0.42.2
inkscapeinkscape
0.43
inkscapeinkscape
0.44
inkscapeinkscape
0.44.1
inkscapeinkscape
0.45.1
inkscapeinkscape
0.46
inkscapeinkscape
0.47
inkscapeinkscape
0.47:pre0
inkscapeinkscape
0.47:pre1
inkscapeinkscape
0.47:pre2
inkscapeinkscape
0.47:pre3
inkscapeinkscape
0.47:pre4
inkscapeinkscape
0.48
inkscapeinkscape
0.48:pre0
inkscapeinkscape
0.48:pre1
inkscapeinkscape
0.48.1
inkscapeinkscape
0.48.2
inkscapeinkscape
0.48.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
inkscape
bullseye
1.0.2-4
fixed
squeeze
no-dsa
bookworm
1.2.2-2
fixed
sid
1.2.2-4
fixed
trixie
1.2.2-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
inkscape
quantal
Fixed 0.48.3.1-1ubuntu6.1
released
precise
Fixed 0.48.3.1-1ubuntu1.1
released
oneiric
Fixed 0.48.2-0ubuntu1.1
released
lucid
not-affected
hardy
ignored
Common Weakness Enumeration
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341
http://lists.opensuse.org/opensuse-updates/2013-02/msg00041.html
http://lists.opensuse.org/opensuse-updates/2013-02/msg00043.html
http://www.openwall.com/lists/oss-security/2012/12/30/2
http://www.ubuntu.com/usn/USN-1712-1
https://bugs.launchpad.net/inkscape/+bug/911146
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341
http://lists.opensuse.org/opensuse-updates/2013-02/msg00041.html
http://lists.opensuse.org/opensuse-updates/2013-02/msg00043.html
http://www.openwall.com/lists/oss-security/2012/12/30/2
http://www.ubuntu.com/usn/USN-1712-1
https://bugs.launchpad.net/inkscape/+bug/911146