CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
66.0%
graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier.
Vendor | Product | Version | CPE |
---|---|---|---|
graphviz | graphviz | * | cpe:2.3:a:graphviz:graphviz:*:*:*:*:*:*:*:* |
graphviz | graphviz | 1.5.1 | cpe:2.3:a:graphviz:graphviz:1.5.1:*:*:*:*:*:*:* |
graphviz | graphviz | 1.5.2 | cpe:2.3:a:graphviz:graphviz:1.5.2:*:*:*:*:*:*:* |
graphviz | graphviz | 1.5.3 | cpe:2.3:a:graphviz:graphviz:1.5.3:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.1 | cpe:2.3:a:graphviz:graphviz:1.7.5.1:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.2 | cpe:2.3:a:graphviz:graphviz:1.7.5.2:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.3 | cpe:2.3:a:graphviz:graphviz:1.7.5.3:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.4 | cpe:2.3:a:graphviz:graphviz:1.7.5.4:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.5 | cpe:2.3:a:graphviz:graphviz:1.7.5.5:*:*:*:*:*:*:* |
graphviz | graphviz | 1.7.5.6 | cpe:2.3:a:graphviz:graphviz:1.7.5.6:*:*:*:*:*:*:* |