Local Information Disclosure Vulnerability in Netty on Unix-Like systems. Netty's multipart decoders store uploads in the temporary directory with insecure permissions, allowing local users to access sensitive information. Patches available in version 4.1.59.Final
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
Github Security Blog | Local Information Disclosure Vulnerability in Netty on Unix-Like systems | 8 Feb 202121:17 | – | github |
Github Security Blog | Local Information Disclosure Vulnerability in io.netty:netty-codec-http | 10 May 202208:46 | – | github |
Github Security Blog | TemporaryFolder on unix-like systems does not limit access to created files | 12 Oct 202017:33 | – | github |
Github Security Blog | TemporaryFolder on unix-like systems does not limit access to created files | 23 Nov 202222:17 | – | github |
Github Security Blog | Local Temp Directory Hijacking Vulnerability | 4 Nov 202017:50 | – | github |
Github Security Blog | Local information disclosure via system temporary directory | 23 Apr 202116:55 | – | github |
Github Security Blog | Sensitive Data Exposure in Apache Ant | 14 Sep 202018:13 | – | github |
Github Security Blog | Code injection in Apache Ant | 3 Feb 202119:16 | – | github |
NVD | CVE-2022-24823 | 6 May 202212:15 | – | nvd |
NVD | CVE-2020-15824 | 8 Aug 202021:15 | – | nvd |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo