CVEs classified under CWE-379, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (33)
CVE-2024-9950 — CVSS 7.8 (high): A vulnerability in Forescout SecureConnector v11.3.07.0109 on Windows allows unauthenticated user to modify compliance scripts due to…
CVE-2024-9500 — CVSS 7.8 (high): A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by the Autodesk Installer could lead to…
CVE-2023-6080 — CVSS 7.8 (high): Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which…
CVE-2023-3181 — CVSS 7.8 (high): The C:\Program Files (x86)\Splashtop\Splashtop Software Updater\uninst.exe process creates a folder at C:\Windows\Temp~nsu.tmp and copies…
CVE-2023-37243 — CVSS 7.8 (high): The C:\Windows\Temp\Agent.Package.Availability\Agent.Package.Availability.exe file is automatically launched as SYSTEM when the system…
CVE-2023-26396 — CVSS 7.8 (high): Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Creation of Temporary File in…
CVE-2023-21612 — CVSS 7.8 (high): Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a…
CVE-2021-21100 — CVSS 7.8 (high): Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An…
CVE-2020-11979 — CVSS 7.5 (high): As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissions of temporary files it created so that only the current user was…
CVE-2021-28613 — CVSS 7.4 (high): Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an…
CVE-2026-7539: A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might…
CVE-2026-54328 — CVSS 7.3 (high): Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi versions with temporary npm or git extension package installs used…
CVE-2024-7562: A potential elevated privilege issue has been reported with InstallShield built Standalone MSI setups having multiple InstallScript custom…
CVE-2021-40708 — CVSS 7.3 (high): Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation vulnerability in the AGSService installer. An…
CVE-2024-24693 — CVSS 7.2 (high): Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct…
CVE-2025-10279 — CVSS 7.0 (high): In mlflow version 2.20.3, the temporary directory used for creating Python virtual environments is assigned insecure world-writable…
CVE-2025-71176 — CVSS 6.8 (medium): pytest through 9.0.2 on UNIX relies on directories with the /tmp/pytest-of-{user} name pattern, which allows local users to cause a denial…
CVE-2026-42191 — CVSS 6.5 (medium): OpenTelemetry.Exporter.OpenTelemetryProtocol is the OTLP (OpenTelemetry Protocol) exporter implementation. From 1.8.0 to 1.15.2, the OTLP…
CVE-2021-39827 — CVSS 6.5 (medium): Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer…
CVE-2021-31411 — CVSS 6.3 (medium): Insecure temporary directory usage in frontend build functionality of com.vaadin:flow-server versions 2.0.9 through 2.5.2 (Vaadin 14.0.3…
CVE-2019-25677 — CVSS 6.2 (medium): WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the application by placing a malformed…
CVE-2023-32450 — CVSS 6.1 (medium): Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially…
CVE-2021-40776 — CVSS 6.1 (medium): Adobe Lightroom Classic 10.3 (and earlier) are affected by a privilege escalation vulnerability in the Offline Lightroom Classic installer…
CVE-2021-21068 — CVSS 6.1 (medium): Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling vulnerability that could allow an…
CVE-2013-1815 — CVSS 6.1 (medium): A flaw was found in PackStack. This vulnerability allows a local user to modify deployed systems by changing the answer file, which is…
CVE-2021-39828 — CVSS 5.8 (medium): Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer…
CVE-2025-64896 — CVSS 5.5 (medium): Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary File in Directory with Incorrect Permissions…
CVE-2025-21162 — CVSS 5.5 (medium): Photoshop Elements versions 2025.0 and earlier are affected by a Creation of Temporary File in Directory with Incorrect Permissions…
CVE-2023-40438 — CVSS 5.5 (medium): An issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14, iOS 16.7 and iPadOS 16.7. An app…
CVE-2025-33111 — CVSS 4.3 (medium): IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is vulnerable to creation of temporary files…
CVE-2021-43017 — CVSS 4.2 (medium): Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service vulnerability in the Creative Cloud Desktop…
CVE-2023-38533 — CVSS 3.3 (low): A vulnerability has been identified in TIA Administrator (All versions < V3 SP2). The affected component creates temporary download files…