Dabfus

**Name of the Vulnerable Software and Affected Versions** Gnump3d versions prior to 2.9.8 **Description** The issue allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file. Additionally, there are multiple vulnerabilities in the gnump3d package that can lead to a breach of confidentiality and integrity of protected information, and these can be exploited remotely. **Recommendations** For versions prior to 2.9.8, update to version 2.9.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the index.lok temporary file to minimize the risk of exploitation.