Lucene search
Veracode Vulnerability DatabaseVERACODE:29564HistoryMar 04, 2021 - 4:32 a.m.
Information Disclosure
2021-03-0404:32:29
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
23.5%
datadog-api-client is vulnerable to information disclosure. The vulnerability exists through the function prepareDownloadFile creating a temporary file with the permissions bits of -rw-r--r-- and the function downloadFileFromResponse method downloading sensitive files into temporary directory shared between all local users on unix-like systems via the API using API client.
| CPE | Name | Operator | Version |
|---|---|---|---|
| datadog-api-client | le | 1.0.0-beta.7 |
Related
osv
osv
Local Information Disclosure Vulnerability
2021-03-03 23:01:17
prion
prion
Design/Logic Flaw
2021-03-03 23:15:00
cve
cve
CVE-2021-21331
2021-03-03 23:15:11
cvelist
cvelist
nvd
nvd
CVE-2021-21331
2021-03-03 23:15:11
github
github
Local Information Disclosure Vulnerability
2021-03-03 23:01:17