CVE-2020-1945
ADVISORY - githubSummary
Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files from the temporary directory back into the build tree allowing an attacker to inject modified source files into the build process.
EPSS Score: 0.00021 (0.042)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Exposure of Resource to Wrong Sphere
ADVISORY - github
ADVISORY - gitlab
ADVISORY - redhat
Insecure Temporary File
NIST
CREATED
UPDATED
ADVISORY IDCVE-2020-1945
EXPLOITABILITY SCORE
1
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
6.3mediumGitHub
CVSS SCORE
6.3mediumAlpine
CREATED
UPDATED
ADVISORY IDCVE-2020-1945
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Debian
CREATED
UPDATED
ADVISORY IDCVE-2020-1945
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
N/AlowUbuntu
CREATED
UPDATED
ADVISORY IDCVE-2020-1945
EXPLOITABILITY SCORE
1.0
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
6.3mediumRed Hat
CREATED
UPDATED
ADVISORY IDCVE-2020-1945
EXPLOITABILITY SCORE
1.0
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
6.3mediumminimos
CREATED
UPDATED
ADVISORY ID
MINI-fvvf-9gxq-m3g6
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
minimos
CREATED
UPDATED
ADVISORY ID
MINI-gv9g-5fq4-f6m3
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-