CVE-2018-10870: redhat-certification: rhcertStore.py: __saveResultsFile allows to write any file

Severity: Critical

CVSS Score: 9.8

redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A remote attacker could use this flaw to overwrite any file, potentially gaining remote code execution.