cvelistv5 - cve-2022-41954

CVE-2022-41954 (GCVE-0-2022-41954)

Vulnerability from cvelistv5 – Published: 2022-11-25 00:00 – Updated: 2025-04-23 16:34

Summary

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ's use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.

Severity ?

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
CWE-377 - Insecure Temporary File

Assigner

GitHub_M

References

URL

Tags

	https://github.com/joniles/mpxj/security/advisori…	x_refsource_CONFIRM
	https://github.com/joniles/mpxj/commit/ae0af24345…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	joniles	mpxj	Affected: < 10.14.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T12:56:38.609Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
          },
          {
            "name": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-41954",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-23T13:53:46.445206Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-23T16:34:44.117Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "mpxj",
          "vendor": "joniles",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 10.14.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-377",
              "description": "CWE-377: Insecure Temporary File",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-07T14:55:00.142Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
        },
        {
          "name": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
        }
      ],
      "source": {
        "advisory": "GHSA-jf2p-4gqj-849g",
        "discovery": "UNKNOWN"
      },
      "title": "Temporary File Information Disclosure Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2022-41954",
    "datePublished": "2022-11-25T00:00:00.000Z",
    "dateReserved": "2022-09-30T00:00:00.000Z",
    "dateUpdated": "2025-04-23T16:34:44.117Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mpxj:mpxj:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.14.1\", \"matchCriteriaId\": \"F61DBF89-546F-4EF9-8783-8561CDAF5A74\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.\"}, {\"lang\": \"es\", \"value\": \"MPXJ es una librer\\u00eda de c\\u00f3digo abierto para leer y escribir planes de proyectos desde una variedad de formatos de archivos y bases de datos. En sistemas operativos tipo Unix (no Windows o Macos), el uso de MPXJ de `File.createTempFile(..)` da como resultado la creaci\\u00f3n de archivos temporales con los permisos `-rw-r--r--`. Esto significa que cualquier otro usuario del sistema puede leer el contenido de este archivo. Cuando MPXJ lee un archivo de programaci\\u00f3n que requiere la creaci\\u00f3n de un archivo o directorio temporal, un usuario local con conocimientos podr\\u00eda localizar estos archivos transitorios mientras est\\u00e1n en uso y luego podr\\u00eda leer la programaci\\u00f3n que est\\u00e1 procesando MPXJ. El problema ha sido parcheado, MPXJ versi\\u00f3n 10.14.1 y posteriores incluye los cambios necesarios. Los usuarios que no puedan actualizar pueden configurar `java.io.tmpdir` en un directorio al que solo tenga acceso el usuario que ejecuta la aplicaci\\u00f3n, lo que evitar\\u00e1 que otros usuarios accedan a estos archivos temporales.\"}]",
      "id": "CVE-2022-41954",
      "lastModified": "2024-11-21T07:24:08.813",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.3, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.3, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 1.4}]}",
      "published": "2022-11-25T19:15:12.023",
      "references": "[{\"url\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "security-advisories@github.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-200\"}, {\"lang\": \"en\", \"value\": \"CWE-377\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-668\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-41954\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2022-11-25T19:15:12.023\",\"lastModified\":\"2024-11-21T07:24:08.813\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.\"},{\"lang\":\"es\",\"value\":\"MPXJ es una librer\u00eda de c\u00f3digo abierto para leer y escribir planes de proyectos desde una variedad de formatos de archivos y bases de datos. En sistemas operativos tipo Unix (no Windows o Macos), el uso de MPXJ de `File.createTempFile(..)` da como resultado la creaci\u00f3n de archivos temporales con los permisos `-rw-r--r--`. Esto significa que cualquier otro usuario del sistema puede leer el contenido de este archivo. Cuando MPXJ lee un archivo de programaci\u00f3n que requiere la creaci\u00f3n de un archivo o directorio temporal, un usuario local con conocimientos podr\u00eda localizar estos archivos transitorios mientras est\u00e1n en uso y luego podr\u00eda leer la programaci\u00f3n que est\u00e1 procesando MPXJ. El problema ha sido parcheado, MPXJ versi\u00f3n 10.14.1 y posteriores incluye los cambios necesarios. Los usuarios que no puedan actualizar pueden configurar `java.io.tmpdir` en un directorio al que solo tenga acceso el usuario que ejecuta la aplicaci\u00f3n, lo que evitar\u00e1 que otros usuarios accedan a estos archivos temporales.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.3,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.3,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"},{\"lang\":\"en\",\"value\":\"CWE-377\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-668\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mpxj:mpxj:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.14.1\",\"matchCriteriaId\":\"F61DBF89-546F-4EF9-8783-8561CDAF5A74\"}]}]}],\"references\":[{\"url\":\"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"name\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"name\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T12:56:38.609Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-41954\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-23T13:53:46.445206Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-23T13:53:47.801Z\"}}], \"cna\": {\"title\": \"Temporary File Information Disclosure Vulnerability\", \"source\": {\"advisory\": \"GHSA-jf2p-4gqj-849g\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 3.3, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"joniles\", \"product\": \"mpxj\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 10.14.1\"}]}], \"references\": [{\"url\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"name\": \"https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"name\": \"https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-200\", \"description\": \"CWE-200: Exposure of Sensitive Information to an Unauthorized Actor\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-377\", \"description\": \"CWE-377: Insecure Temporary File\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2023-09-07T14:55:00.142Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2022-41954\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-23T16:34:44.117Z\", \"dateReserved\": \"2022-09-30T00:00:00.000Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2022-11-25T00:00:00.000Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

PYSEC-2022-42996

Vulnerability from pysec - Published: 2022-11-25 19:15 - Updated: 2023-05-04 04:29

Details

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ's use of File.createTempFile(..) results in temporary files being created with the permissions -rw-r--r--. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set java.io.tmpdir to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.

Impacted products

Name	purl
mpxj	pkg:pypi/mpxj

Aliases

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "mpxj",
        "purl": "pkg:pypi/mpxj"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "287ad0234213c52b0638565e14bd9cf3ed44cedd"
            }
          ],
          "repo": "https://github.com/joniles/mpxj",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "10.0.0",
        "10.0.1",
        "10.0.2",
        "10.0.3",
        "10.0.4",
        "10.0.5",
        "10.1.0",
        "10.10.0",
        "10.11.0",
        "10.12.0",
        "10.13.0",
        "10.14.0",
        "10.2.0",
        "10.3.0",
        "10.4.0",
        "10.5.0",
        "10.6.0",
        "10.6.1",
        "10.6.2",
        "10.7.0",
        "10.8.0",
        "10.9.0",
        "10.9.1",
        "9.0.0",
        "9.1.0",
        "9.2.0",
        "9.2.1",
        "9.2.2",
        "9.2.3",
        "9.2.4",
        "9.2.5",
        "9.2.6",
        "9.3.0",
        "9.3.1",
        "9.4.0",
        "9.5.0",
        "9.5.1",
        "9.5.2",
        "9.6.0",
        "9.7.0",
        "9.8.0",
        "9.8.1",
        "9.8.2",
        "9.8.3"
      ]
    }
  ],
  "aliases": [
    "CVE-2022-41954",
    "GHSA-jf2p-4gqj-849g"
  ],
  "details": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
  "id": "PYSEC-2022-42996",
  "modified": "2023-05-04T04:29:27.436392Z",
  "published": "2022-11-25T19:15:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
    },
    {
      "type": "FIX",
      "url": "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd"
    }
  ]
}

FKIE_CVE-2022-41954

Vulnerability from fkie_nvd - Published: 2022-11-25 19:15 - Updated: 2024-11-21 07:24

Severity ?

3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Summary

References

URL	Tags
security-advisories@github.com	https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721
security-advisories@github.com	https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721
af854a3a-2127-422b-91ae-364da2661108	https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g	Third Party Advisory

Impacted products

	Vendor	Product	Version
	mpxj	mpxj	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mpxj:mpxj:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F61DBF89-546F-4EF9-8783-8561CDAF5A74",
              "versionEndExcluding": "10.14.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files."
    },
    {
      "lang": "es",
      "value": "MPXJ es una librer\u00eda de c\u00f3digo abierto para leer y escribir planes de proyectos desde una variedad de formatos de archivos y bases de datos. En sistemas operativos tipo Unix (no Windows o Macos), el uso de MPXJ de `File.createTempFile(..)` da como resultado la creaci\u00f3n de archivos temporales con los permisos `-rw-r--r--`. Esto significa que cualquier otro usuario del sistema puede leer el contenido de este archivo. Cuando MPXJ lee un archivo de programaci\u00f3n que requiere la creaci\u00f3n de un archivo o directorio temporal, un usuario local con conocimientos podr\u00eda localizar estos archivos transitorios mientras est\u00e1n en uso y luego podr\u00eda leer la programaci\u00f3n que est\u00e1 procesando MPXJ. El problema ha sido parcheado, MPXJ versi\u00f3n 10.14.1 y posteriores incluye los cambios necesarios. Los usuarios que no puedan actualizar pueden configurar `java.io.tmpdir` en un directorio al que solo tenga acceso el usuario que ejecuta la aplicaci\u00f3n, lo que evitar\u00e1 que otros usuarios accedan a estos archivos temporales."
    }
  ],
  "id": "CVE-2022-41954",
  "lastModified": "2024-11-21T07:24:08.813",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 3.3,
          "baseSeverity": "LOW",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 1.4,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 3.3,
          "baseSeverity": "LOW",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-11-25T19:15:12.023",
  "references": [
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        },
        {
          "lang": "en",
          "value": "CWE-377"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-668"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-JF2P-4GQJ-849G

Vulnerability from github – Published: 2022-11-28 22:09 – Updated: 2024-09-26 14:24

Summary

Temporary File Information Disclosure vulnerability in MPXJ

Details

Impact

On Unix-like operating systems (not Windows or macos), MPXJ's use of File.createTempFile(..) results in temporary files being created with the permissions -rw-r--r--. This means that any other user on the system can read the contents of this file. When MPXJ is reading a type of schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ.

Patches

The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes.

Workarounds

Setting java.io.tmpdir to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.

For more information

If you have any questions or comments about this advisory * Open an issue in https://github.com/joniles/mpxj

Severity ?

2.8 (Low)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

2.0 (Low)


                  
                    CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "net.sf.mpxj:mpxj"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "net.sf.mpxj"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "net.sf.mpxj-for-csharp"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "net.sf.mpxj-for-vb"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "mpxj"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "10.14.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2022-41954"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200",
      "CWE-668"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-11-28T22:09:09Z",
    "nvd_published_at": "2022-11-25T19:15:00Z",
    "severity": "LOW"
  },
  "details": "### Impact\nOn Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a type of schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ.\n\n### Patches\nThe problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes.\n\n### Workarounds\nSetting `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.\n\n### For more information\nIf you have any questions or comments about this advisory\n* Open an issue in https://github.com/joniles/mpxj\n",
  "id": "GHSA-jf2p-4gqj-849g",
  "modified": "2024-09-26T14:24:09Z",
  "published": "2022-11-28T22:09:09Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41954"
    },
    {
      "type": "WEB",
      "url": "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd"
    },
    {
      "type": "WEB",
      "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/joniles/mpxj"
    },
    {
      "type": "WEB",
      "url": "https://github.com/pypa/advisory-database/tree/main/vulns/mpxj/PYSEC-2022-42996.yaml"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "Temporary File Information Disclosure vulnerability in MPXJ"
}

WID-SEC-W-2023-2678

Vulnerability from csaf_certbund - Published: 2023-10-17 22:00 - Updated: 2023-10-17 22:00

Summary

Oracle Construction and Engineering: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Construction and Engineering ist eine Sammlung von Werkzeugen zur Unterstützung von Bau- und Ingenieurbüros. Sie umfasst u. a. Projektmanagement-Lösungen zur Verwaltung von Projekte, zur Schaffung von Transparenz, zur Zusammenarbeit und zur Verwaltung von Änderungen.

Angriff

Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Construction and Engineering ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme

- UNIX - Linux - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Construction and Engineering ist eine Sammlung von Werkzeugen zur Unterst\u00fctzung von Bau- und Ingenieurb\u00fcros. Sie umfasst u. a. Projektmanagement-L\u00f6sungen zur Verwaltung von Projekte, zur Schaffung von Transparenz, zur Zusammenarbeit  und zur Verwaltung von \u00c4nderungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Construction and Engineering ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2678 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2678.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2678 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2678"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - October 2023 - Appendix Oracle Construction and Engineering vom 2023-10-17",
        "url": "https://www.oracle.com/security-alerts/cpuoct2023.html#AppendixPVA"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Construction and Engineering: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-10-17T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:00:00.333+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2678",
      "initial_release_date": "2023-10-17T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-10-17T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 19.12.16",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 19.12.16",
                  "product_id": "T027345",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:19.12.16"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 20.12.16",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 20.12.16",
                  "product_id": "T027346",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:20.12.16"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 19.12.17",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 19.12.17",
                  "product_id": "T030598",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:19.12.17"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 20.12.12",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 20.12.12",
                  "product_id": "T030599",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:20.12.12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 21.12.10",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 21.12.10",
                  "product_id": "T030600",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:21.12.10"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 21.12.16",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 21.12.16",
                  "product_id": "T030601",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:21.12.16"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Construction and Engineering \u003c= 22.12.9",
                "product": {
                  "name": "Oracle Construction and Engineering \u003c= 22.12.9",
                  "product_id": "T030602",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:construction_and_engineering:22.12.9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Construction and Engineering"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-2976",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T030598",
          "T030600",
          "T030599",
          "T030602",
          "T030601",
          "T027346",
          "T027345"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-2976"
    },
    {
      "cve": "CVE-2022-45688",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T030598",
          "T030600",
          "T030599",
          "T030602",
          "T030601",
          "T027346",
          "T027345"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-45688"
    },
    {
      "cve": "CVE-2022-41954",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T030598",
          "T030600",
          "T030599",
          "T030602",
          "T030601",
          "T027346",
          "T027345"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-41954"
    },
    {
      "cve": "CVE-2022-31160",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Construction and Engineering existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"MITTEL-HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "last_affected": [
          "T030598",
          "T030600",
          "T030599",
          "T030602",
          "T030601",
          "T027346",
          "T027345"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-31160"
    }
  ]
}

GSD-2022-41954

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2022-41954

Aliases

CVE-2022-41954

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-41954",
    "id": "GSD-2022-41954"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-41954"
      ],
      "details": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
      "id": "GSD-2022-41954",
      "modified": "2023-12-13T01:19:33.019984Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2022-41954",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "mpxj",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "\u003c 10.14.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "joniles"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-200",
                "lang": "eng",
                "value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"
              }
            ]
          },
          {
            "description": [
              {
                "cweId": "CWE-377",
                "lang": "eng",
                "value": "CWE-377: Insecure Temporary File"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "refsource": "MISC",
            "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
          },
          {
            "name": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721",
            "refsource": "MISC",
            "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-jf2p-4gqj-849g",
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "(,10.14.1)",
          "affected_versions": "All versions before 10.14.1",
          "cvss_v3": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-668",
            "CWE-937"
          ],
          "date": "2023-07-06",
          "description": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
          "fixed_versions": [
            "10.14.1"
          ],
          "identifier": "CVE-2022-41954",
          "identifiers": [
            "CVE-2022-41954",
            "GHSA-jf2p-4gqj-849g"
          ],
          "not_impacted": "All versions starting from 10.14.1",
          "package_slug": "maven/net.sf.mpxj/mpxj",
          "pubdate": "2022-11-25",
          "solution": "Upgrade to version 10.14.1 or above.",
          "title": "Insecure Temporary File",
          "urls": [
            "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
            "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd",
            "https://github.com/advisories/GHSA-jf2p-4gqj-849g"
          ],
          "uuid": "bc74a77d-2896-432e-b0ef-e6e6d9184a9c"
        },
        {
          "affected_range": "(,10.14.1)",
          "affected_versions": "All versions before 10.14.1",
          "cwe_ids": [
            "CWE-1035",
            "CWE-200",
            "CWE-377",
            "CWE-937"
          ],
          "date": "2022-11-28",
          "description": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
          "fixed_versions": [
            "10.14.1"
          ],
          "identifier": "CVE-2022-41954",
          "identifiers": [
            "GHSA-jf2p-4gqj-849g",
            "CVE-2022-41954"
          ],
          "not_impacted": "All versions starting from 10.14.1",
          "package_slug": "nuget/net.sf.mpxj-for-csharp",
          "pubdate": "2022-11-28",
          "solution": "Upgrade to version 10.14.1 or above.",
          "title": "Insecure Temporary File",
          "urls": [
            "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
            "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd",
            "https://github.com/advisories/GHSA-jf2p-4gqj-849g"
          ],
          "uuid": "4a1cced8-8819-4bc6-815a-b13c360ab218"
        },
        {
          "affected_range": "(,10.14.1)",
          "affected_versions": "All versions before 10.14.1",
          "cwe_ids": [
            "CWE-1035",
            "CWE-200",
            "CWE-377",
            "CWE-937"
          ],
          "date": "2022-11-28",
          "description": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
          "fixed_versions": [
            "10.14.1"
          ],
          "identifier": "CVE-2022-41954",
          "identifiers": [
            "GHSA-jf2p-4gqj-849g",
            "CVE-2022-41954"
          ],
          "not_impacted": "All versions starting from 10.14.1",
          "package_slug": "nuget/net.sf.mpxj-for-vb",
          "pubdate": "2022-11-28",
          "solution": "Upgrade to version 10.14.1 or above.",
          "title": "Insecure Temporary File",
          "urls": [
            "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
            "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd",
            "https://github.com/advisories/GHSA-jf2p-4gqj-849g"
          ],
          "uuid": "20860ca9-a7df-45ee-9ff1-3e2dc5f87b0c"
        },
        {
          "affected_range": "(,10.14.1)",
          "affected_versions": "All versions before 10.14.1",
          "cwe_ids": [
            "CWE-1035",
            "CWE-200",
            "CWE-377",
            "CWE-937"
          ],
          "date": "2022-11-28",
          "description": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
          "fixed_versions": [
            "10.14.1"
          ],
          "identifier": "CVE-2022-41954",
          "identifiers": [
            "GHSA-jf2p-4gqj-849g",
            "CVE-2022-41954"
          ],
          "not_impacted": "All versions starting from 10.14.1",
          "package_slug": "nuget/net.sf.mpxj",
          "pubdate": "2022-11-28",
          "solution": "Upgrade to version 10.14.1 or above.",
          "title": "Insecure Temporary File",
          "urls": [
            "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
            "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd",
            "https://github.com/advisories/GHSA-jf2p-4gqj-849g"
          ],
          "uuid": "06a7238b-a3c4-4bba-9406-0d61d0ec1ee3"
        },
        {
          "affected_range": "\u003c10.14.1",
          "affected_versions": "All versions before 10.14.1",
          "cwe_ids": [
            "CWE-1035",
            "CWE-200",
            "CWE-377",
            "CWE-937"
          ],
          "date": "2022-11-28",
          "description": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files.",
          "fixed_versions": [
            "10.14.1"
          ],
          "identifier": "CVE-2022-41954",
          "identifiers": [
            "GHSA-jf2p-4gqj-849g",
            "CVE-2022-41954"
          ],
          "not_impacted": "All versions starting from 10.14.1",
          "package_slug": "pypi/mpxj",
          "pubdate": "2022-11-28",
          "solution": "Upgrade to version 10.14.1 or above.",
          "title": "Insecure Temporary File",
          "urls": [
            "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
            "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
            "https://github.com/joniles/mpxj/commit/287ad0234213c52b0638565e14bd9cf3ed44cedd",
            "https://github.com/advisories/GHSA-jf2p-4gqj-849g"
          ],
          "uuid": "6baed645-3b9a-4340-9048-506e397ef9a4"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mpxj:mpxj:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "10.14.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2022-41954"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ\u0027s use of `File.createTempFile(..)` results in temporary files being created with the permissions `-rw-r--r--`. This means that any other user on the system can read the contents of this file. When MPXJ is reading a schedule file which requires the creation of a temporary file or directory, a knowledgeable local user could locate these transient files while they are in use and would then be able to read the schedule being processed by MPXJ. The problem has been patched, MPXJ version 10.14.1 and later includes the necessary changes. Users unable to upgrade may set `java.io.tmpdir` to a directory to which only the user running the application has access will prevent other users from accessing these temporary files."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                },
                {
                  "lang": "en",
                  "value": "CWE-377"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://github.com/joniles/mpxj/security/advisories/GHSA-jf2p-4gqj-849g"
            },
            {
              "name": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721",
              "refsource": "MISC",
              "tags": [],
              "url": "https://github.com/joniles/mpxj/commit/ae0af24345d79ad45705265d9927fe55e94a5721"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2023-09-07T15:15Z",
      "publishedDate": "2022-11-25T19:15Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-41954 (GCVE-0-2022-41954)

PYSEC-2022-42996

FKIE_CVE-2022-41954

GHSA-JF2P-4GQJ-849G

Impact

Patches

Workarounds

For more information

WID-SEC-W-2023-2678

GSD-2022-41954

Tags

Sightings

Nomenclature