Lucene search
K

4 matches found

Snyk
Snyk
added 2025/09/17 8:42 p.m.1 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...

5.1CVSS6.6AI score0.00106EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/10/31 2:48 a.m.4 views

SUSE CVE-2015-5273

The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool ABRT before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp...

3.6CVSS6.8AI score0.00909EPSS
Exploits5References2
OSV
OSV
added 2021/03/29 6:25 p.m.3 views

GHSA-9295-MHF3-V33M Insecure temporary file in Netflix OSS Hollow

ID: NFLX-2021-001 Title: Local information disclosure in Hollow Release Date: 2021-03-23 Credit: Security Researcher @JLLeitschuh Overview Security researcher @JLLeitschuh reported that Netflix Hollow a Netflix OSS project available here: https://github.com/Netflix/hollow writes to a local...

4.4CVSS5.9AI score0.00243EPSS
Exploits0References4
CNVD
CNVD
added 2015/12/08 12:0 a.m.2 views

Red Hat Automatic Bug Reporting Tool Arbitrary File Write Vulnerability

Red Hat Automatic Bug Reporting Tool ABRT is a set of automated bug detection and reporting tools from Red Hat Red Hat. A security vulnerability exists in the abrt-action-install-debuginfo-to-abrt-cache help program in Red Hat ABRT versions prior to 2.7.1. A local attacker can exploit the...

3.6CVSS6.7AI score0.00909EPSS
Exploits5References1
Rows per page
Query Builder