CVE-2020-12050

HIGH

Opensuse Backports Sle - Race Condition

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-12050. PoCs published by tnpitsecurity.

AI-analyzed exploit summary The repository contains a functional Go exploit for CVE-2020-12050, which leverages a race condition in the sqliteODBC installer script to achieve privilege escalation. The exploit pre-creates hardlinks in /tmp to win the race and inject a malicious ODBC configuration.

Description

SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.9996-4, has a race condition leading to root privilege escalation because any user can replace a /tmp/sqliteodbc$$ file with new contents that cause loading of an arbitrary library.

Exploits (1)

github WORKING POC 4 stars

by tnpitsecurity · poc

https://github.com/tnpitsecurity/CVEs/tree/master/CVE-2020-12050

View Code ZIP pw:eip

The repository contains a functional Go exploit for CVE-2020-12050, which leverages a race condition in the sqliteODBC installer script to achieve privilege escalation. The exploit pre-creates hardlinks in /tmp to win the race and inject a malicious ODBC configuration.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Racy

Target: sqliteodbc-0.9996-4.fc31.x86_64.rpm

No auth needed

Prerequisites: local access · sqliteODBC installation process

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (9)

Core 9

Core References

Third Party Advisory x_refsource_misc

https://sysdream.com/news/lab/

Vendor Advisory x_refsource_misc

http://www.ch-werner.de/sqliteodbc/

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PR6B33IGBADGYDBTEEU36OGERER2HOGQ/

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXPHBDVB3LAQUQJCZ4WIS3JWM7JFR56X/

Issue Tracking, Third Party Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=1825762

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PDS5RK7F47BRXHUYRWGMGLYU2GJEVZQA/

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00013.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00026.html

Various Sources x_refsource_misc

https://sysdream.com/news/lab/2020-05-25-cve-2020-12050-fedora-red-hat-centos-local-privilege-escalation-through-a-race-condition-in-the-sqliteodbc-installer-script/

Scores

CVSS v3 7.0

EPSS 0.0031

EPSS Percentile 22.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-362

Status published

Products (5)

fedoraproject/fedora 30

fedoraproject/fedora 31

fedoraproject/fedora 32

opensuse/backports_sle 15.0 sp1

sqliteodbc_project/sqliteodbc 0.9996

Published Apr 30, 2020

Tracked Since Feb 18, 2026