High severity7.5NVD Advisory· Published Aug 20, 2018· Updated Jun 16, 2026
CVE-2011-2765
CVE-2011-2765
Description
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
pyroPyPI | < 3.15 | 3.15 |
Affected products
2- osv-coords2 versions
< 1:3.14-1+ 1 more
- (no CPE)range: < 1:3.14-1
- (no CPE)range: < 3.15
Patches
Vulnerability mechanics
References
6- bugs.debian.org/631912nvdExploitIssue TrackingThird Party AdvisoryWEB
- github.com/advisories/GHSA-xrr4-74mc-rpjcghsaADVISORY
- github.com/irmen/Pyro3/commit/554e095a62c4412c91f981e72fd34a936ac2bf1envdThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2011-2765ghsaADVISORY
- pythonhosted.org/Pyro/12-changes.htmlnvdVendor AdvisoryWEB
- github.com/pypa/advisory-database/tree/main/vulns/pyro/PYSEC-2018-99.yamlghsaWEB
News mentions
0No linked articles in our index yet.