Vulnerability in Opencryptoki_project Opencryptoki

CVE-2012-4455

openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK..opencryptoki or (2) LCK..opencryptoki_stdll file in /var/lock/.

EPSS: 0.004 (27.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References