Lucene search
GoogleOSV:GHSA-VM69-474V-7Q2WHistoryMay 05, 2022 - 2:48 a.m.
Incorrect Default Permissions in Apache Commons FileUpload
2022-05-0502:48:41
Google
osv.dev
24
3.3 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary files via an unspecified symlink attack.
Related
ibm
ibm
securityvulns
securityvulns
ubuntucve
ubuntucve
CVE-2013-0248
2013-03-15 00:00:00
prion
prion
Default configuration
2013-03-15 20:55:00
cve
cve
CVE-2013-0248
2013-03-15 20:55:00
github
github
Incorrect Default Permissions in Apache Commons FileUpload
2022-05-05 02:48:41
seebug
seebug
Apache Commons FileUploadไธๅฎๅ
จไธดๆถๆไปถๅๅปบๆผๆด(CVE-2013-0248)
2013-03-10 00:00:00
debiancve
debiancve
CVE-2013-0248
2013-03-15 20:55:00
nessus
nessus
GLSA-202107-39 : Apache Commons FileUpload: Multiple vulnerabilities
2022-01-24 00:00:00
gentoo
gentoo
Apache Commons FileUpload: Multiple vulnerabilities
2021-07-17 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00
3.3 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Related for OSV:GHSA-VM69-474V-7Q2W