CVE-2026-44468

The affected product creates a directory with insecure default permissions during administrative installation. This allows a low-privileged local attacker to modify a temporary file defining the components to be installed, enabling local privilege escalation by forcing the deployment of arbitrary...

CVE-2026-33430

Summary of CVE-2026-33430 and related advisory : The connected OSV/GHSA entries describe a Windows MSI installerPrivilege Escalation in Briefcase when used to create per-machine (All Users) installations. The installation process can create a directory that inherits the permissions of its parent,...

Creation of Temporary File in Directory with Insecure Permissions

Overview Affected versions of this package are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the use of an insecure temporary directory during snapshot import operations. An attacker can access sensitive information by reading files from the temporary...

CVE-2019-18932

log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...

CVE-2025-64642

CVE-2025-64642 concerns NMIS/BioDose V22.02 and earlier, where default insecure file permissions on installation directories could allow local users to modify program executables and libraries. Multiple sources (NVD, Red Hat, EUVD, CVE lists, and ICS advisory) describe the issue as an insecure in...

EUVD-2013-0024

Malware in sbrugna...

EUVD-2007-6020

Malware in sbrugna...

EUVD-2024-1002

Malicious code in bioql PyPI...

CVE-2025-0712

An uncontrolled search path element vulnerability can lead to local privilege Escalation LPE via Insecure Directory Permissions. The vulnerability arises from improper handling of directory permissions. An attacker with local access may exploit this flaw to move and delete arbitrary files,...

CVE-2024-13600

CVE-2024-13600 concerns Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin for WordPress (affected: ≤1.0.5). An unauthenticated attacker can access sensitive data stored in the majesticsupportdata directory under /wp-content/uploads/majesticsupportdata, potentially including ...

Adobe Photoshop 安全漏洞

Adobe Photoshop is a suite of image processing software from the American company Audobee Adobe. The software is primarily used for processing images. A security vulnerability exists in Adobe Photoshop that stems from vulnerability to a temporary file creation in a directory with incorrect...

RHEL 5 : python-suds (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python-suds: Insecure temporary directory use when initializing file-based URL cache CVE-2013-2217 Note that Nessus...

Wix Toolset < 3.14.1 / 4.x < 4.0.5 Multiple Vulnerabilities

The version of Wix Toolset installed on the remote host is prior to 3.14.1 or 4.x prior to 4.0.5. It is, therefore, affected by multiple vulnerabilities. - The custom action behind WiX's RemoveFolderEx functionality could allow a standard user to delete protected directories. RemoveFolderEx delet...

CVE-2024-29187

CVE-2024-29187 affects Wix Burn-based bundles when run as SYSTEM. Burn drops binaries into the insecure C:\Windows\Temp via GetTempPathW, allowing an attacker to hijack the binaries and elevate privileges. The issue is fixed in Wix 3.14.1 and 4.0.5. Affected component: Wix Toolset Burn installer ...

CVE-2024-29187 WiX based installers are vulnerable to binary hijack when run as SYSTEM

WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to drop and load multiple binaries. Standard users can hijack the binary before it'...

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.14 on RHEL 7 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.14 on RHEL 8 (RHSA-2023:7638)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7638 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

CVE-2023-4052

The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling user account. This could be combined with creation of a junction a form of symbolic link to allow...

CVE-2022-43701 Insecure directory permissions on installer files

When the installation directory does not have sufficiently restrictive file permissions, an attacker can modify files in the installation directory to cause execution of malicious code...

SUSE CVE-2005-1725

launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory...