com.netflix.priam:priam@3.11.61 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the com.netflix.priam:priam package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • L
Information Exposure

Affected versions of this package are vulnerable to Information Exposure. Priam uses File.createTempFile, which gives the permissions on that file -rw-r--r--. An attacker with read access to the local filesystem can read anything written there by the Priam process.

How to fix Information Exposure?

There is no fixed version for com.netflix.priam:priam.

[0,)