cve/CVE-2023-6597.md at b8bb3913ae5ed6689c69f4d953bda7435b2f2da7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

Description

An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.

POC

Reference

No PoCs from references.

Github

https://github.com/NaInSec/CVE-LIST
https://github.com/fkie-cad/nvd-json-data-feeds

917 B Raw Blame History

CVE-2023-6597

Description

POC

Reference

Github

917 B

Raw Blame History