Lucene search
K

61 matches found

EUVD
EUVD
added 2 days ago5 views

EUVD-2026-24969

mkfifo: permissions of an existing file are changed after FIFO creation fails...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/04/29 10:8 a.m.7 views

CVE-2026-35341

A flaw was found in uutils coreutils mkfifo. This vulnerability allows a local user to inadvertently change the permissions of an existing file when attempting to create a named pipe FIFO at the same location. The mkfifo utility, instead of failing, proceeds to set the existing file's permissions...

7.1CVSS5.2AI score0.00165EPSS
Exploits1References2
OSV
OSV
added 2026/04/22 6:31 p.m.10 views

GHSA-9GH9-HWPR-RVQQ uutils coreutils has a Time-of-Check to Time-of-Use (TOCTOU) race condition

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS5.9AI score0.00147EPSS
Exploits1References6
EUVD
EUVD
added 2026/04/22 6:31 p.m.5 views

EUVD-2026-24986

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS5.9AI score0.00147EPSS
Exploits1References2
OSV
OSV
added 2026/04/22 6:31 p.m.6 views

GHSA-W8M4-4V35-V6X3 Duplicate Advisory: uutils coreutils allows unauthorized modification of permissions on existing files

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-pmf6-rcx4-v53v. This link is maintained to preserve external references. Original Description A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files...

7.1CVSS6AI score0.00165EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/04/22 6:31 p.m.8 views

Duplicate Advisory: uutils coreutils allows unauthorized modification of permissions on existing files

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-pmf6-rcx4-v53v. This link is maintained to preserve external references. Original Description A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files...

7.1CVSS6AI score0.00165EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2026/04/22 5:16 p.m.6 views

CVE-2026-35352

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS0.00147EPSS
Exploits1References4
NVD
NVD
added 2026/04/22 5:16 p.m.8 views

CVE-2026-35341

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS0.00165EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/04/22 5:16 p.m.10 views

CVE-2026-35341

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References2
OSV
OSV
added 2026/04/22 5:16 p.m.5 views

UBUNTU-CVE-2026-35341

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:8 p.m.4 views

CVE-2026-35352

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS5.9AI score0.00147EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/22 4:8 p.m.30 views

CVE-2026-35352 uutils coreutils mkfifo Privilege Escalation via TOCTOU Race Condition

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS0.00147EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/22 4:8 p.m.6 views

CVE-2026-35352 uutils coreutils mkfifo Privilege Escalation via TOCTOU Race Condition

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS5.9AI score0.00147EPSS
Exploits1References1
CVE
CVE
added 2026/04/22 4:7 p.m.18 views

CVE-2026-35341

The CVE-2026-35341 entry concerns uutils coreutils mkfifo. The vulnerability arises when mkfifo tries to create a FIFO but a file already exists at the target path; the operation for that path does not terminate and a follow-up set_permissions call executes, changing the existing file’s permissio...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/22 4:7 p.m.4 views

CVE-2026-35341 uutils coreutils mkfifo Unauthorized Permission Change on Existing Files

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:7 p.m.3 views

CVE-2026-35341

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/04/22 4:7 p.m.3 views

CVE-2026-35341

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.5AI score0.00165EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34477

Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description A flaw in the mkfifo utility allows for the unauthorized modification of permissions on existing files. When the utility fails to create a FIFO because a file already exists at the...

7.1CVSS6AI score0.00165EPSS
Exploits1References13
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line tool set developed by Uutils. There is a security vulnerability in uutils coreutils. This vulnerability stems from the mkfifo function, which allows unauthorized modification of existing file permissions. When mkfifo fails to create a FIFO du...

7.1CVSS5.8AI score0.00165EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils Open Source. There is a security vulnerability in uutils coreutils, which stems from a timing race condition in the mkfifo utility. The utility creates a FIFO and then performs a path-based chmod operation to set...

7CVSS5.9AI score0.00147EPSS
Exploits1References1
Rows per page
Query Builder