Описание
keycloak-httpd-client-install symlink attack vulnerability
keycloak-httpd-client-install versions before 0.8 insecurely creates temporary file allowing local attackers to overwrite other files via symbolic link.
Пакеты
Наименование
keycloak-httpd-client-install
pip
Затронутые версииВерсия исправления
< 0.8
0.8
Связанные уязвимости
CVSS3: 3.9
redhat
около 8 лет назад
keycloak-httpd-client-install versions before 0.8 insecurely creates temporary file allowing local attackers to overwrite other files via symbolic link.
CVSS3: 5.5
nvd
около 8 лет назад
keycloak-httpd-client-install versions before 0.8 insecurely creates temporary file allowing local attackers to overwrite other files via symbolic link.
CVSS3: 5.5
debian
около 8 лет назад
keycloak-httpd-client-install versions before 0.8 insecurely creates t ...
oracle-oval
больше 6 лет назад
ELSA-2019-2137: keycloak-httpd-client-install security, bug fix, and enhancement update (LOW)