6.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
welcome.py in xdiagnose before 2.5.2ubuntu0.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
osvdb.org/85882
secunia.com/advisories/50854
www.ubuntu.com/usn/USN-1591-1
bugs.launchpad.net/ubuntu/+source/xdiagnose/+bug/1036211
exchange.xforce.ibmcloud.com/vulnerabilities/79475