Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Creation of Temporary File in Directory with Insecure Permissions
Vulnerability Description
The package com.github.samtools:htsjdk before 3.0.1 are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the createTempDir() function in util/IOUtil.java not checking for the existence of the temporary directory before attempting to create it.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
htsjdk 安全漏洞
Vulnerability Description
htsjdk是samtools开源的一个用于高通量测序数据(HTS)格式的 Java API。 htsjdk 3.0.1之前版本存在安全漏洞,该漏洞源于util/IOUtil.java中的createTempDir()函数在尝试创建临时目录之前未检查临时目录是否存在,导致在具有不安全权限的目录中创建临时文件。
CVSS Information
N/A
Vulnerability Type
N/A