2 matches found
ROS-20260417-73-0032
A vulnerability in the futimes function of the Node.js software platform is related to a flaw in the authorization procedure. Exploitation of the vulnerability could allow an attacker to gain access to modify files...
Incorrect Authorization
Overview Affected versions of this package are vulnerable to Incorrect Authorization in the permission model via the fs.futimes function due to failing to check for write permissions. A process restricted to "read-only" access can still modify a file's access and modification timestamps. While it...