CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pocoo: >> Jinja2 >> 2.7.2 Security Vulnerabilities

CVE-2014-0012

FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1402.

CVSS Score

4.4

EPSS Score

0.001

Published

2014-05-19

Page 1

Vulnerabilities

Vulnerable Software

Pocoo: >> Jinja2 >> 2.7.2 Security Vulnerabilities

Products

Pricing

Contact Us