High severityNVD Advisory· Published Nov 11, 2022· Updated Apr 15, 2025
ManyDesigns Portofino WarFileLauncher.java createTempDir temp file
CVE-2022-3952
Description
A vulnerability has been found in ManyDesigns Portofino 5.3.2 and classified as problematic. Affected by this vulnerability is the function createTempDir of the file WarFileLauncher.java. The manipulation leads to creation of temporary file in directory with insecure permissions. Upgrading to version 5.3.3 is able to address this issue. The name of the patch is 94653cb357806c9cf24d8d294e6afea33f8f0775. It is recommended to upgrade the affected component. The identifier VDB-213457 was assigned to this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.manydesigns:portofinoMaven | < 5.3.3 | 5.3.3 |
Affected products
2- Range: 5.3.2
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-925r-r6rp-2jj7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-3952ghsaADVISORY
- github.com/ManyDesigns/Portofino/commit/94653cb357806c9cf24d8d294e6afea33f8f0775ghsaWEB
- github.com/ManyDesigns/Portofino/pull/580ghsaWEB
- github.com/ManyDesigns/Portofino/releases/tag/v5.3.3ghsaWEB
- vuldb.comghsaWEB
News mentions
0No linked articles in our index yet.