Malicious code in wallet-rpc (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-4258 Malicious code in wallet-rpc (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Monero: [Monero wallet RPC] File precreation to file ownership and credentials leak

The Monero wallet RPC was found to have a vulnerability in the file creation process that could lead to potential credential leakage. The issue was located in the walletrpcserver::init method, where a file was created without using the OEXCL flag, allowing an attacker to pre-create the file and...