CVE-2023-0482

Published February 17th, 2023

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

In RESTEasy the insecure File.createTempFile() is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user.

resteasy/resteasy

An Implementation of the Jakarta RESTful Web Services Specification

GitHub

1.14K