Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-49982

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tmp is a temporary file and directory creator for node.js. In version 0.2.6, the assertPath guard added to tmp rejects only string values that contain the...

8.2CVSS5.4AI score0.00496EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/06/11 3:45 p.m.7 views

CVE-2026-49982

tmp is a temporary file and directory creator for node.js. In version 0.2.6, the assertPath guard added to tmp rejects only string values that contain the substring ... It is bypassed when prefix, postfix, or template is supplied as a non-string value Array, Buffer, or any object whose includes'....

8.2CVSS5.3AI score0.00496EPSS
Exploits1
OpenVAS
OpenVAS
added 2025/08/12 12:0 a.m.2 views

Debian: Security Advisory (DLA-4268-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.00309EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Debian dla-4268 : node-tmp - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4268 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4268-1 [email protected] https://www.debian.org/lts/security/...

5.3CVSS6.3AI score0.00309EPSS
Exploits1References4
Snyk
Snyk
added 2025/08/06 5:6 p.m.1 views

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack via the dir parameter. An attacker can cause files or directories to be written to arbitrary locations by supplying a crafted symbolic link that resolves outside the intended temporary directory. PoC const tmp =...

6.8CVSS7AI score0.00309EPSS
Exploits1References2
Circl
Circl
added 2025/08/06 7:22 a.m.5 views

CVE-2025-54798

creationtimestamp| type| source ---|---|--- 2025-08-06 07:22:36+00:00| published-proof-of-concept| https://github.com/raszi/node-tmp/security/advisories/GHSA-52f5-9888-hmc6...

5.3CVSS5.8AI score0.00309EPSS
Exploits1References1
Rows per page
Query Builder