Bill Stearns

**Name of the Vulnerable Software and Affected Versions** sysreport versions prior to 1.3.7 **Description** The issue allows local users to obtain sensitive information via a symlink attack on a temporary directory. Exploitation of this issue may lead to a violation of confidentiality, integrity, and availability of protected information. It is mentioned that exploitation can be carried out remotely. **Recommendations** For versions prior to 1.3.7, update to version 1.3.7 or later to resolve the issue. As a temporary workaround, consider restricting access to temporary directories to minimize the risk of exploitation.