CVE

CVE-2021-28100

CVE-2021-28100

Priam uses File.createTempFile, which gives the permissions on that file -rw-r–r–. An attacker with read access to the local filesystem can read anything written there by the Priam process.

Source: CVE-2021-28100

Exit mobile version