Race Condition Vulnerability in HTSlib 1.8 Allows Arbitrary File Overwrite via Symlink Attack

Race Condition Vulnerability in HTSlib 1.8 Allows Arbitrary File Overwrite via Symlink Attack

CVE-2018-14329 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

In HTSlib 1.8, a race condition in cram/cram_io.c might allow local users to overwrite arbitrary files via a symlink attack.

Learn more about our User Device Pen Test.