CVE-2023-29465

Published: Apr 6, 2023

Modified: Feb 12, 2025

PUBLISHED

Description

SageMath FlintQS 1.0 relies on pathnames under TMPDIR (typically world-writable), which (for example) allows a local user to overwrite files with the privileges of a different user (who is running FlintQS).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/sagemath/FlintQS/issues/3

https://github.com/sagemath/sage/pull/35419

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-29465

Description

Affected Products

References