Insecure temporary file in Python for Windows

Published: 2024-09-09

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2024-4030
CWE-ID	CWE-378
Exploitation vector	Local
Public exploit	N/A
Vulnerable software Subscribe	Python Universal components / Libraries / Scripting languages
Vendor	Python.org

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Creation of Temporary File With Insecure Permissions

EUVDB-ID: #VU96944

Risk: Low

CVSSv3.1: 3.2 [CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-4030

CWE-ID: CWE-378 - Creation of Temporary File With Insecure Permissions

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a directory returned by tempfile.mkdtemp() would not always have permissions set to restrict reading and writing to the temporary directory by other users instead usually inheriting the correct permissions from the default location. A local user can gain access to potentially sensitive information stored in temporary files.

Successful exploitation of the vulnerability requires that an alternate configuration or users without a profile directory.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Python: 3.8 - 3.12.5

External links

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.