Lucene search
K

25 matches found

CVE
CVE
added 2020/10/12 5:55 p.m.444 views

CVE-2020-15250

CVE-2020-15250 affects JUnit4 TemporaryFolder information disclosure in Unix-like environments where the system tmp dir is shared among users. Affected: JUnit4 versions before 4.13.1; fixed in 4.13.1 for Java 7+; Java 6 and earlier have no patch. Workarounds include running tests with a dedicated...

5.5CVSS5.2AI score0.01695EPSS
Exploits1References39Affected Software1
Cvelist
Cvelist
added 2020/10/12 5:55 p.m.32 views

CVE-2020-15250 Information disclosure in JUnit4

In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system's temporary directory is shared between all users on that system. Because of this, when files and directories are written into this...

4.4CVSS5.6AI score0.01695EPSS
Exploits1References39
Debian CVE
Debian CVE
added 2020/10/12 5:55 p.m.40 views

CVE-2020-15250

In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system's temporary directory is shared between all users on that system. Because of this, when files and directories are written into this...

5.5CVSS6.5AI score0.01695EPSS
Exploits1
OSV
OSV
added 2020/10/12 5:33 p.m.155 views

GHSA-269G-PWP5-87PP TemporaryFolder on unix-like systems does not limit access to created files

Vulnerability The JUnit4 test rule TemporaryFolder contains a local information disclosure vulnerability. Example of vulnerable code: java public static class HasTempFolder @Rule public TemporaryFolder folder = new TemporaryFolder; @Test public void testUsingTempFolder throws IOException...

4.4CVSS6.8AI score0.01695EPSS
Exploits1References41
Github Security Blog
Github Security Blog
added 2020/10/12 5:33 p.m.95 views

TemporaryFolder on unix-like systems does not limit access to created files

Vulnerability The JUnit4 test rule TemporaryFolder contains a local information disclosure vulnerability. Example of vulnerable code: java public static class HasTempFolder @Rule public TemporaryFolder folder = new TemporaryFolder; @Test public void testUsingTempFolder throws IOException...

5.5CVSS6.5AI score0.01695EPSS
Exploits1References41Affected Software1
Rows per page
Query Builder