Race Condition Vulnerability in Beego 1.10.0 File Session Manager

CVE-2019-16354 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

The File Session Manager in Beego 1.10.0 allows local users to read session files because there is a race condition involving file creation within a directory with weak permissions.

Learn more about our User Device Pen Test.