TOCTTOU Vulnerability in Apport Allows Arbitrary Directory Write

TOCTTOU Vulnerability in Apport Allows Arbitrary Directory Write

CVE-2019-11482 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Sander Bos discovered a time of check to time of use (TOCTTOU) vulnerability in apport that allowed a user to cause core files to be written in arbitrary directories.

Learn more about our User Device Pen Test.