htsjdk is vulnerable to information disclosure. The vulnerability exists in createTempDir
function of IOUtil.java
because the information in this directory is visible to other local users which allows an attacker to view sensitive files and hijack the directories to manipulate contents escalating the user privileges.