Lucene search
K

78 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: jersey (UTSA-2026-016750)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016750 advisory. Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains a local information disclosure vulnerability. This is due to the use of the File.createTempFil...

6.2CVSS5.8AI score0.00905EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : postgresql-jdbc-42.2.14-2.el8 (AXSA:2023-5995:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5995:03 advisory. postgresql-jdbc: Information leak of prepared statement data due to insecure temporary file permissions CVE-2022-41946 Tenable has extracted the preceding...

5.5CVSS8.4AI score0.0048EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2465

Name of the Vulnerable Software and Affected Versions Dell SupportAssist OS Recovery versions prior to 5.5.15.1 Description Dell SupportAssist OS Recovery contains a flaw related to the creation of temporary files with insecure permissions. A local attacker with low privileges could potentially...

6.6CVSS6.2AI score0.00095EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.10 views

PT-2026-2466

Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

7.5CVSS6.4AI score0.00089EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.7 views

CVE-2020-10237

An issue was discovered in Froxlor through 0.10.15. The installer wrote configuration parameters including passwords into files in /tmp, setting proper permissions only after writing the sensitive data. A local attacker could have disclosed the information if he read the file at the right time,...

5.5CVSS6.2AI score0.00234EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/15 12:0 a.m.3 views

Adobe Creative Cloud Desktop Application Denial of Service Vulnerability (CNVD-2026-10898)

Adobe Creative Cloud Desktop Application is a suite of applications for managing applications and services in the Creative Cloud Membership Management Center from Adobe USA. The program supports synchronizing and sharing files, managing fonts, and accessing asset libraries for commercial...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Adobe Creative Cloud Desktop 安全漏洞

Adobe Creative Cloud Desktop Application is a suite of applications for managing applications and services in the Creative Cloud Membership Management Center from Adobe USA. The program supports synchronizing and sharing files, managing fonts, and accessing asset libraries for commercial...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1949

Malware in sbrugna...

2.1CVSS6.4AI score0.00377EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-12213

Malware in sbrugna...

7.8CVSS7.4AI score0.00378EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-4394

Malware in sbrugna...

6.2CVSS6.4AI score0.00305EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-0549

Malware in sbrugna...

7.5CVSS8AI score0.08235EPSS
Exploits0References39
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-25779

Malicious code in bioql PyPI...

7.8CVSS7.4AI score0.00397EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2022-0160

Malicious code in bioql PyPI...

3.3CVSS4.2AI score0.00208EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-23870

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2025/09/19 1:12 p.m.7 views

OESA-2025-2296 apache-mime4j security update

Java stream based MIME message parser. Security Fixes: Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider may lead to information disclosure to other local users. This issue affects Apache James MIME4J version 0.8.8 and prior versions. We recommend users to...

5.5CVSS6.2AI score0.00271EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.3 views

Mihomo Party 安全漏洞

Mihomo Party is a web proxy tool from the Chinese company Mihomo Party. A security vulnerability exists in Mihomo Party 1.8.1 and earlier versions, which stems from improperly set permissions on temporary files and could lead to a local attack...

4.5CVSS4.7AI score0.00124EPSS
Exploits0References5
OSV
OSV
added 2025/08/06 8:15 p.m.4 views

CVE-2025-38747

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to Elevation of Privileges...

7.8CVSS5.8AI score0.00143EPSS
Exploits0References1
Veracode
Veracode
added 2025/05/28 3:58 a.m.9 views

Information Disclosure

org.codelibs.fess, fess is vulnerable to Information Disclosure. The vulnerability is due to insecure temporary file creation by the use of createTempFile without setting restrictive permissions, which allows an attacker with local access to read sensitive data from these files...

5.5CVSS6.3AI score0.00126EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2025/05/27 6:0 p.m.19 views

Fess has Insecure Temporary File Permissions

Summary Fess an open-source Enterprise Search Server creates temporary files without restrictive permissions, which may allow local attackers to read sensitive information from these temporary files. Details The createTempFile method in org.codelibs.fess.helper.SystemHelper creates temporary file...

5.5CVSS5.9AI score0.00126EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/05/27 4:32 a.m.18 views

CVE-2025-48382 Fess has Insecure Temporary File Permissions

Fess is a deployable Enterprise Search Server. Prior to version 14.19.2, the createTempFile method in org.codelibs.fess.helper.SystemHelper creates temporary files without explicitly setting restrictive permissions. This could lead to potential information disclosure, allowing unauthorized local...

5.1CVSS0.00126EPSS
Exploits0References2
Rows per page
Query Builder