2 matches found
CVE-2021-28100
Priam uses File.createTempFile, which gives the permissions on that file -rw-r--r--. An attacker with read access to the local filesystem can read anything written there by the Priam process...
CVE-2021-28100
Summary: Priam creates temporary files with permissions -rw-r--r-- via File.createTempFile, enabling a local attacker with read access to view contents written by Priam. The discloseable data could reside in files created during backup/restore processes. Affected locations include MetaData.java, ...