CVEbaza.plSłownik CWECWE-377
Common Weakness Enumeration

CWE-377

Insecure Temporary File

Kategoria: ClassCVE: 95
Opis

Tworzenie i używanie niezabezpieczonych plików tymczasowych może narazić dane aplikacji i systemu na ataki. Takie pliki mogą być dostępne dla nieuprawnionych użytkowników lub procesów, umożliwiając im odczyt, modyfikację lub usunięcie poufnych informacji.

Description (EN)

Creating and using insecure temporary files can leave application and system data vulnerable to attack.

Podatności CVE z CWE-377 (95)
9.8
CVSS
CRITICAL
CVE-2011-4119

caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.

pub. 2021-10-26
9.8
CVSS
CRITICAL
CVE-2012-2666

golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/pkg/debug/gosym/pclntab_test.go creates a temporary file with predicable name and executes it as shell script.

pub. 2021-07-09
9.8
CVSS
CRITICAL
CVE-2015-5224

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

pub. 2017-08-23
9.3
CVSS
CRITICAL
CVE-2025-14307

W komponencie AutoExtract aplikacji Robocode 1.9.3.6 metoda createTempFile tworzy pliki tymczasowe w sposób niezabezpieczony, co umożliwia atakującemu wyścig o dostęp do pliku (race condition). Podatność może prowadzić do wykonania dowolnego kodu lub nadpisania krytycznych plików systemowych.

pub. 2025-12-09
9.1
CVSS
CRITICAL
CVE-2013-4561

In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.

pub. 2022-06-30
8.8
CVSS
HIGH
CVE-2018-16494

In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or execution of newly created files and directories. Insecure umask setting was present throughout the Versa servers.

pub. 2021-05-26
8.5
CVSS
HIGH
CVE-2025-34194

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 and Application versions prior to 25.1.1413 (Windows client deployments) contain an insecure temporary-file handling vulnerability in the PrinterInstallerClient components. The software creates files as NT AUTHORITY\SYSTEM inside a directory under the control of the local user (C:\Users\%USER%\AppData\Local\Temp\). An attacker who can place symbolic links or otherwise influence filenames in that directory can cause the service to follow the link and write to arbitrary filesystem locations as SYSTEM. This allows a local, unprivileged user to overwrite or create files as SYSTEM, leading to local privilege escalation and the ability to modify configuration files, replace or inject binaries, or otherwise compromise confidentiality, integrity, and availability of the system. This vulnerability has been confirmed to be remediated, but it is unclear as to when the patch was introduced.

pub. 2025-09-19
8.1
CVSS
HIGH
CVE-2023-43498

In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using MultipartFormDataParser creates temporary files in the default system temporary directory with the default permissions for newly created files, potentially allowing attackers with access to the Jenkins controller file system to read and write the files before they are used.

pub. 2023-09-20
8.1
CVSS
HIGH
CVE-2022-21809

A file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to arbitrary file upload. An attacker can upload a malicious file to trigger this vulnerability.

pub. 2022-05-12
7.8
CVSS
HIGH
CVE-2025-46369

Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecure Temporary File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Privilege Escalation.

pub. 2025-11-13
7.8
CVSS
HIGH
CVE-2025-7707

The llama_index library version 0.12.33 sets the NLTK data directory to a subdirectory of the codebase by default, which is world-writable in multi-user environments. This configuration allows local users to overwrite, delete, or corrupt NLTK data files, leading to potential denial of service, data tampering, or privilege escalation. The vulnerability arises from the use of a shared cache directory instead of a user-specific one, making it susceptible to local data tampering and denial of service.

pub. 2025-10-13
7.8
CVSS
HIGH
CVE-2020-1991

An insecure temporary file vulnerability in Palo Alto Networks Traps allows a local authenticated Windows user to escalate privileges or overwrite system files. This issue affects Palo Alto Networks Traps 5.0 versions before 5.0.8; 6.1 versions before 6.1.4 on Windows. This issue does not affect Cortex XDR 7.0. This issue does not affect Traps for Linux or MacOS.

pub. 2020-04-08
7.8
CVSS
HIGH
CVE-2018-6704

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

pub. 2018-12-12
7.8
CVSS
HIGH
CVE-2018-6705

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

pub. 2018-12-12
7.8
CVSS
HIGH
CVE-2018-3710

Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Insecure Temporary File in the project import component resulting remote code execution.

pub. 2018-03-21
7.5
CVSS
HIGH
CVE-2026-49134

CodexBar prior to 0.32.0 contains a privilege escalation vulnerability in the CLI installer that allows local attackers to execute arbitrary commands as root by exploiting a race condition in temporary file handling. The installer creates a temporary file with mktemp, writes a privileged shell payload into it, and executes it with administrator privileges via bash, allowing a same-user local process to rewrite the installer body before the administrator prompt is approved, causing attacker-controlled commands to run as root.

pub. 2026-06-01
7.5
CVSS
HIGH
CVE-2025-67223

The Aranda File Server (AFS) component in Aranda Software Aranda Service Desk before 8.3.12 stores daily activity logs with predictable names in a publicly accessible directory, which allows unauthenticated remote attackers to obtain direct virtual paths of uploaded files and bypass access controls to download sensitive documents containing PII.

pub. 2026-04-28
7.5
CVSS
HIGH
CVE-2026-20649

A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, watchOS 26.3. A user may be able to view sensitive user information.

pub. 2026-02-11
7.5
CVSS
HIGH
CVE-2013-4253

The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.

pub. 2022-10-19
7.5
CVSS
HIGH
CVE-2022-0315

Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0.

pub. 2022-03-24
Pokazano 20 z 95 podatności
Informacje
ID: CWE-377
Typ: Class
Podatności: 95
MITRE CWE ↗
← Słownik CWE