CVE-2014-2387

Pen 0.18.0 has Insecure Temporary File Creation vulnerabilities

Affected products Warnungen 0 Metrics 3 CWE 1 References 10

Data is provided by the National Vulnerability Database (NVD)

Pen Project ≫ Pen Version0.18.0

Opensuse ≫ Opensuse Version13.1

Debian ≫ Debian Linux Version8.0

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.297

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.4	1.8	2.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

CWE-668 Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Third Party Advisory

Mailing List

Mailing List

Third Party Advisory

VDB Entry

Third Party Advisory

Issue Tracking

Third Party Advisory

Issue Tracking

Third Party Advisory

VDB Entry

Third Party Advisory

CVE Source (NVD)

CVE Source (JSON)

EUVD