Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Google Subscribe
Filtered by product Data Transfer Project
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-22572 1 Google 1 Data Transfer Project 2022-05-10 2.1 LOW 5.5 MEDIUM
On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world readable permissions. Any sensitive information written to theses files is visible to all other local users on unix-like systems. We recommend upgrading past commit https://github.com/google/data-transfer-project/pull/969