PT-2023-16311 · Undefined · Undefined
Published
2023-05-21
·
Updated
2025-01-31
·
CVE-2023-05
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
🚨 CVE-2023-33251
When Akka HTTP before 10.5.2 accepts file uploads via the FileUploadDirectives.fileUploadAll directive, the temporary file it creates has too weak permissions: it is readable by other users on Linux or UNIX, a similar issue to CVE-2022-41946.
🎖@cveNotify
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Undefined