CVE-2022-24913
CVSS v3.1
5.5 (Medium)
EPSS
0.05 % (18th)
Affected Products
1
Advisories
1
Versions of the package com.fasterxml.util:java-merge-sort before 1.1.0 are vulnerable to Insecure Temporary File in the StdTempFileProvider() function in StdTempFileProvider.java, which uses the permissive File.createTempFile() function, exposing temporary file contents.
- CVE Status
- PUBLISHED
- CNA
- Snyk
- Published Date
-
2023-01-12 05:15:11
(20 months ago) - Updated Date
-
2023-11-07 03:44:41
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...