CWE-378 (创建拥有不安全权限的临时文件) — Vulnerability Class 34

34 vulnerabilities classified as CWE-378 (创建拥有不安全权限的临时文件). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Paused
CVE-2026-33572	OpenClaw < 2026.2.17 - Insufficient File Permissions in Session Transcript Files — OpenClaw	8.4	High	2026-03-29
CVE-2026-4822	Enter Software Iperius Backup Backup Service temp file — Iperius Backup	7.0	High	2026-03-25
CVE-2025-46685	Dell SupportAssist OS Recovery 安全漏洞 — SupportAssist OS Recovery	7.5	High	2026-01-13
CVE-2025-46684	Dell SupportAssist OS Recovery 安全漏洞 — SupportAssist OS Recovery,	6.6	Medium	2026-01-13
CVE-2025-34352	JumpCloud Remote Assist < 0.317.0 Arbitrary File Write/Delete via Insecure Temp Directory — Remote Assist	7.8^AI	High^AI	2025-12-02
CVE-2025-7647	Insecure Temporary File Handling in run-llama/llama_index — run-llama/llama_index	8.8	-	2025-09-27
CVE-2025-4953	Podman: build context bind mount	7.4	High	2025-09-16
CVE-2025-9474	Mihomo Party Socket sysproxy.ts enableSysProxy temp file — Party	4.5	Medium	2025-08-26
CVE-2025-38747	Dell SupportAssist OS Recovery 安全漏洞 — SupportAssist OS Recovery	7.8	High	2025-08-06
CVE-2025-32438	Local privilege escalation in make-initrd-ng — nixpkgs	8.8	High	2025-04-15
CVE-2025-27148	Gradle vulnerable to local privilege escalation through system temporary directory — gradle	8.8	High	2025-02-25
CVE-2024-52543	Dell NativeEdge 安全漏洞 — NativeEdge	6.5	Medium	2024-12-25
CVE-2024-47884	Insecure Temporary File in `foxmarks` — foxmarks	5.0^AI	Medium^AI	2024-10-11
CVE-2024-23454	Apache Hadoop: Temporary File Local Information Disclosure — Apache Hadoop	5.5^AI	Medium^AI	2024-09-25
CVE-2024-7358	Point B Ltd Getscreen Agent Installation getscreen.msi temp file — Getscreen Agent	7.8	High	2024-08-01
CVE-2024-39872	Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server	9.6	Critical	2024-07-09
CVE-2023-28600	Zoom Client 安全漏洞 — Zoom for macOS Client	5.2	Medium	2023-06-13
CVE-2023-27408	Siemens SCALANCE 安全漏洞 — SCALANCE LPE9403	3.3	Low	2023-05-09
CVE-2023-0481	Quarkus 安全漏洞 — Quarkus	3.3	-	2023-02-24
CVE-2023-0482	Resteasy 安全漏洞 — RESTEasy	5.5	-	2023-02-17
CVE-2022-24411	Dell Technologies Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS	7.8	High	2022-04-12
CVE-2021-25654	Avaya Aura Device Services Arbitrary Code Execution Vulnerability — Avaya Aura Devices Services	6.2	Medium	2021-06-25
CVE-2021-1426	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-1427	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-1496	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-1429	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-1430	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-1428	Cisco AnyConnect Secure Mobility Client for Windows DLL and Executable Hijacking Vulnerabilities — Cisco AnyConnect Secure Mobility Client	7.0	High	2021-05-06
CVE-2021-28168	Maxim Nesen jersey 安全漏洞 — Eclipse Jersey	6.2	Medium	2021-04-22
CVE-2021-25314	hawk: Insecure file permissions — SUSE Linux Enterprise High Availability 12-SP3	7.8	High	2021-04-14

Vulnerabilities classified as CWE-378 (创建拥有不安全权限的临时文件) represent 34 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Support Us — Your donation helps us keep running

CWE-378 (创建拥有不安全权限的临时文件) — Vulnerability Class 34