CWE-377
Insecure Temporary File
MITRENo catalog description on file. The MITRE CWE site has the canonical reference.
CVEs (total)
2
Critical
0
High
0
Medium
2
Low
0
Severity distribution
Recent CVEs
showing 2 of 2- CVE-2026-45384Medium· 6.1EPSS 0%2 d ago
bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files. Prior to version 4.0.12, there is an arbitrary file overwrite vulnerability via symlink attack on predictable temp files during archive up
- CVE-2026-41001Medium· 5.3EPSS 0%2 d ago
Spring Boot's ArtemisEmbeddedConfigurationFactory uses a fixed, static path for the embedded Artemis message broker's data directory when no explicit path is configured. A local attacker on the same host can pre-create this predictable dire
CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.