CVE-2021-28168
CVE-2021-28168 affects Eclipse Jersey 2.28–2.33 and 3.0.0–3.0.1, where File.createTempFile creates a world-readable file in the system temp directory (-rw-r--r--). Local attackers could view sensitive contents. The connected IBM PEM advisory confirms disclosure risk and notes fixes via updated Je...