CVE-2025-70341

Published March 4th, 2026

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

N/A

Affected

2

PROJECTS

Description

Insecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to write arbitrary files.

App-Auto-Patch/App-Auto-Patch

Auto patch management script via Dialog

GitHub

245

malvector/CVE-2025-70341

CVE-2025-70341: Local Privilege Escalation via TOCTOU in App-Auto-Patch

GitHub