Insecure Temporary Files Vulnerability in katello-debug

Insecure Temporary Files Vulnerability in katello-debug

CVE-2016-9595 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

A flaw was found in katello-debug before 3.4.0 where certain scripts and log files used insecure temporary files. A local user could exploit this flaw to conduct a symbolic-link attack, allowing them to overwrite the contents of arbitrary files.

Learn more about our User Device Pen Test.