Vulnerabilities (CVE)

Filtered by vendor Gource Subscribe
Filtered by product Gource
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-2449 1 Gource 1 Gource 2024-02-04 5.5 MEDIUM 6.5 MEDIUM
Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.