Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/03/11 7:47 p.m.3 views

CVE-2026-31979

CVE-2026-31979 affects Himmelblau’s daemon (himmelblaud-tasks) running as root. The issue arises prior to 3.1.0 and 2.3.8 where the daemon writes Kerberos cache files under /tmp/krb5cc_ without symlink protections, and after commit 87a51ee PrivateTmp was removed from the systemd hardening, exposi...

8.8CVSS5.9AI score0.00022EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/11 7:47 p.m.1 views

CVE-2026-31979 himmelblaud-tasks: local privilege escalation via /tmp symlink attack on Kerberos ccache

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Prior to 3.1.0 and 2.3.8, the himmelblaud-tasks daemon, running as root, writes Kerberos cache files under /tmp/krb5cc without symlink protections. Since commit 87a51ee, PrivateTmp is explicitly removed from the task...

8.8CVSS5.9AI score0.00022EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2013/02/24 10:55 p.m.2 views

CVE-2013-0164

The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp...

3.6CVSS5.6AI score0.00056EPSS
Exploits0References7
OSV
OSVadded 2012/10/10 6:55 p.m.1 views

DEBIAN-CVE-2012-4454

openCryptoki before 2.4.1, when using spinlocks, allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the 1 .pkapixpk or 2 .pkcs11spinloc file in /tmp...

2.9CVSS6.7AI score0.00655EPSS
Exploits0References1
Exploit DB
Exploit DBadded 2000/12/20 12:0 a.m.123 views

SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber

!/usr/local/bin/perl -w The problem is catman creates files in /tmp insecurly. They are based on the PID of the catman process, catman will happily clobber any files that are symlinked to that file. The idea of this script is to watch the process list for the catman process, get the pid and Creat...

7AI score
Exploits0
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.46 views

install.iss.txt

Date: Sat, 20 Feb 1999 20:59:23 -0500 From: Fyodor To: [email protected] Subject: ISS install.iss security hole Today I downloade the latest trial version of Internet Security Scanner for Linux version 5.3. The install program shell script requires that you be root, even if you want to install...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.31 views

suse.6.1.tmp.symlinks.txt

Date: Wed, 2 Jun 1999 11:01:32 +0200 From: Thomas Fischbacher To: [email protected] Subject: /tmp symlink problems in SuSE Linux 6.1 I notified SuSE GmbH several weeks ago about this problem, but didn't get any response, therefore this post to Bugtraq. With SuSE Linux 6.1 there are still a few...

7.4AI score
Exploits0
Rows per page
Query Builder