漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ManyDesigns Portofino WarFileLauncher.java createTempDir temp file
Vulnerability Description
A vulnerability has been found in ManyDesigns Portofino 5.3.2 and classified as problematic. Affected by this vulnerability is the function createTempDir of the file WarFileLauncher.java. The manipulation leads to creation of temporary file in directory with insecure permissions. Upgrading to version 5.3.3 is able to address this issue. The name of the patch is 94653cb357806c9cf24d8d294e6afea33f8f0775. It is recommended to upgrade the affected component. The identifier VDB-213457 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
不安全的临时文件
Vulnerability Title
ManyDesigns Portofino 安全漏洞
Vulnerability Description
ManyDesigns Portofino是意大利ManyDesigns公司的一个低代码工具。用于构建模型驱动的 REST API 和 web 应用程序。 ManyDesigns Portofino 5.3.2存在安全漏洞,该漏洞源于WarFileLauncher.java文件的未知部分,攻击者利用该漏洞可以通过操作createTempDir函数导致在具有不安全权限的目录中创建临时文件。
CVSS Information
N/A
Vulnerability Type
N/A