Fallos del tipo CWE-377

93 resultados
CVE-2015-5224CRITICALThe mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly oEPSS 4.5%CVE-2026-20204HIGHImproper Handling and Insufficient Isolation of Specific Temporary Files in Splunk EnterpriseEPSS 3.3%CVE-2018-3710Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Insecure Temporary File in the project import component resultinEPSS 2.9%CVE-2017-16024The sync-exec module is used to simulate child_process.execSync in node versions <0.11.9. Sync-exec uses tmp directories as a buffer before EPSS 2.6%CVE-2012-2666golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/pkg/debug/gosym/pclntab_test.go creates a temporary file with predicabEPSS 1.9%CVE-2018-16494In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissiEPSS 1.9%CVE-2011-4119caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.EPSS 1.8%CVE-2022-21809CRITICALA file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP requEPSS 1.7%CVE-2022-0736HIGHInsecure Temporary File in mlflow/mlflowEPSS 1.6%CVE-2013-4561In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentialEPSS 1.1%CVE-2022-0315HIGHInsecure Temporary File in horovod/horovodEPSS 0.9%CVE-2017-20147MEDIUMIn the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping uEPSS 0.8%CVE-2018-25068MEDIUMdevent globalpom-utils FileResourceManagerProvider.java createTmpDir temp fileEPSS 0.8%CVE-2023-43498In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using MultipartFormDataParser creates temporary files in the EPSS 0.8%CVE-2022-26386MEDIUMPreviously Firefox for macOS and Linux would download temporary files to a user-specific directory in <code>/tmp</code>, but this behavior wEPSS 0.7%CVE-2024-23287MEDIUMA privacy issue was addressed with improved handling of temporary files. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4,EPSS 0.7%CVE-2025-67223HIGHThe Aranda File Server (AFS) component in Aranda Software Aranda Service Desk before 8.3.12 stores daily activity logs with predictable nameEPSS 0.6%CVE-2018-6706LOWMcAfee Agent (MA) non-Windows versions incorrect use of temporary file vulnerabilityEPSS 0.6%CVE-2013-4253HIGHThe deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in EPSS 0.6%CVE-2022-3952LOWManyDesigns Portofino WarFileLauncher.java createTempDir temp fileEPSS 0.6%