CVE-2023-49345 | budgie-takeabrea Home Directory /tmp/nextbreak_ link following

Inserito da Angelo Barbosa | Dic 14, 2023 | CVE

A vulnerability classified as critical has been found in budgie-takeabrea. Affected is an unknown function of the file /tmp/nextbreak_<user> of the component Home Directory Handler. The manipulation leads to link following.

This vulnerability is traded as CVE-2023-49345. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49345 | budgie-takeabrea Home Directory /tmp/nextbreak_ link following

Post correlati

CVE-2023-23639 | MainWP Staging Extension Plugin up to 4.0.3 on WordPress authorization

CVE-2024-39153 | idcCMS 1.35 The info_deal.php cross-site request forgery

CVE-2024-3825 | BlazeMeter Plugin up to 4.21 on Jenkins cross-site request forgery

CVE-2024-5331 | Breakdance Plugin up to 1.7.2 on WordPress authorization