Описание
mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect file access control in situations where M_fs_perms_can_access attempts to delete an existing file (that lacks public read/write access) during a copy operation, related to fs/m_fs.c and fs/m_fs_path.c. An attacker could create the file and then would have access to the data.
Ссылки
- PatchThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:monetra:mstdlib:1.2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00345
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-732
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect file access control in situations where M_fs_perms_can_access attempts to delete an existing file (that lacks public read/write access) during a copy operation, related to fs/m_fs.c and fs/m_fs_path.c. An attacker could create the file and then would have access to the data.
EPSS
Процентиль: 57%
0.00345
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-732