dirac@7.2.9 vulnerabilities
DIRAC is an interware, meaning a software framework for distributed computing.
-
latest version
8.0.59
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
5 days ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the dirac package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
DIRAC is an interware, meaning a software framework for distributed computing. Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere during the proxy generation process, it is possible for unauthorized users on the same machine to gain read access to the proxy. This allows the user to then perform any action that is possible with the original proxy. Note: This vulnerability only exists for a short period of time (sub-millsecond) during the generation process. How to fix Exposure of Resource to Wrong Sphere? Upgrade |
[,8.0.41)
|
DIRAC is an interware, meaning a software framework for distributed computing. Affected versions of this package are vulnerable to Race Condition in How to fix Race Condition? Upgrade |
[,8.0.0a19)
|
DIRAC is an interware, meaning a software framework for distributed computing. Affected versions of this package are vulnerable to Insecure Permissions due to not using safe mode for grid-security directories. How to fix Insecure Permissions? Upgrade |
[,8.0.2)
|
DIRAC is an interware, meaning a software framework for distributed computing. Affected versions of this package are vulnerable to Arbitrary Code Execution due to missing validation of How to fix Arbitrary Code Execution? Upgrade |
[,8.0.0a13)
|