Fluid Attacks Database

Description

Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might cause Inkspace to process unintended files, allow local users to obtain sensitive information, and possibly have other unspecified impacts.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 13	inkscape	>=0 <0.48.3.1-1.3	0.48.3.1-1.3
debian 12	inkscape	>=0 <0.48.3.1-1.3	0.48.3.1-1.3
debian 11	inkscape	>=0 <0.48.3.1-1.3	0.48.3.1-1.3
debian 14	inkscape	>=0 <0.48.3.1-1.3	0.48.3.1-1.3
rpm rhel6	inkscape	-	-

Aliases

1. CVE-2012-60762. NVD-2012-60763. OSV-DEBIAN-2012-60764. OSV-2012-60765. SECURITY-TRACKER-CVE-2012-6076

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.