Lucene search
+L

6 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-0139

Malicious code in bioql PyPI...

7.1CVSS7.2AI score0.0029EPSS
Exploits0References8
redhatcve
redhatcve
added 2025/01/28 9:25 a.m.14 views

CVE-2024-45339

A flaw was found in glog, a logging library. This vulnerability allows an unprivileged attacker to overwrite sensitive files via a symbolic link planted in a widely writable directory, exploiting the log file path predictability. Mitigation Mitigation for this issue is either not available or the...

7.1CVSS6.4AI score0.0029EPSS
Exploits0References8
osv
osv
added 2025/01/28 2:15 a.m.7 views

AZL-56075 CVE-2024-45339 affecting package vitess for versions less than 17.0.7-4

When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that...

7.1CVSS7.2AI score0.0029EPSS
Exploits0References1
osv
osv
added 2025/01/28 1:3 a.m.9 views

CVE-2024-45339 Vulnerability when creating log files in github.com/golang/glog

When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that...

7.1CVSS6.7AI score0.0029EPSS
Exploits0References9
cve
cve
added 2025/01/28 1:3 a.m.317 views

CVE-2024-45339

CVE-2024-45339 affects the Go glog package. The issue arises when logs are written to a widely-writable directory: an unprivileged attacker could predict a privileged process’s log path and pre-create a symlink to a sensitive file, causing the process to overwrite it. The fix is to have glog exit...

7.1CVSS6.9AI score0.0029EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2025/01/28 1:3 a.m.4 views

CVE-2024-45339 Vulnerability when creating log files in github.com/golang/glog

When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that...

6.7AI score0.0029EPSS
Exploits0References5
Rows per page
Query Builder