CVE-2026-54328 | earendil-works pi up to 0.78.0 temp file (GHSA-jfgx-wxx8-mp94)

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability identified as problematic has been detected in earendil-works pi up to 0.78.0. This impacts an unknown function. This manipulation causes creation of temporary file in directory with insecure permissions.

This vulnerability is tracked as CVE-2026-54328. The attack is restricted to local execution. No exploit exists.

You should upgrade the affected component.

CVE-2026-54328 | earendil-works pi up to 0.78.0 temp file (GHSA-jfgx-wxx8-mp94)

Post correlati

CVE-2025-66444 | Hitachi Infrastructure Analytics Advisor prior 11.0.5-00 cross site scripting (sec-2025-133)

CVE-2025-37868 | Linux Kernel prior 6.12.25/6.14.4/6.15-rc3 migrate_pages_batch deadlock

CVE-2024-9623 | GitLab Community Edition/Enterprise Edition up to 17.2.8/17.3.4/17.4.1 authorization

CVE-2025-14119 | App Landing Template Blocks for WPBakery Visual Composer Page Builder Plugin atvc_video_play cross site scripting