CVE-2024-55566

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Dec 9, 2024
Updated: Dec 17, 2024
CWE ID 335

Summary

CVE-2024-55566 is a vulnerability affecting ColPack versions 1.0.10 through 9a7293a. This issue involves a predictable temporary file located in the /tmp directory, whose name is derived from an unseeded random number generator. An attacker can exploit this flaw to overwrite files or prevent other users from using ColPack's graphing functionality.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share