CVE-2014-1839

Medium

The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified…

mitre·NVD-CWE-noinfo·Published 2014-03-11

CVSS

5.6

EPSS

0.00

KEV

Exploits

cve.orgen

177 chars

The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file.

NVDen

177 chars

The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file.

OSV.deven

177 chars

The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file.

GHSAen

176 chars

The Execute class in shellutils in logilab-common before 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file.

NVDes

207 chars

La clase Execute en shellutils en logilab-commons anterior a 0.61.0 utiliza tempfile.mktemp, lo que permite a usuarios locales tener un impacto no especificado mediante la precreación de un archivo temporal.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.4	3.4	6.4	AV:L/AC:M/Au:N/C:P/I:P/A:P
3.1	Secondary	GHSA	5.6	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L