2 matches found
CVE-2023-43782
Cadence up to version 0.9.2 (2023-08-21) uses insecure temporary files under /tmp, notably /tmp/.cadence-aloop-daemon.x and /tmp/cadence-wineasio.reg. A local attacker can leverage this to delete or modify the files, potentially disrupting Cadence operations or enabling file-related risks (e.g., ...
CVE-2023-43782
Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/.cadence-aloop-daemon.x Temporary File. The file is used even if it has been created by a local adversary before Cadence started. The adversary can then delete the file, disrupting Cadence...