Vendor
Scala Lang
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 1 CVE
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-15288 | Hig | 0.51 | 7.8 | 0.00 | Nov 15, 2017 | The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, and 2.12.x before 2.12.4 uses weak permissions for private files in /tmp/scala-devel/${USER:shared}/scalac-compile-server-port, which allows local users to write to arbitrary class files and consequently gain… | ||
| CVE-2022-28355 | 0.00 | — | 0.01 | Apr 2, 2022 | randomUUID in Scala.js before 1.10.0 generates predictable values. |
- risk 0.51cvss 7.8epss 0.00
The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, and 2.12.x before 2.12.4 uses weak permissions for private files in /tmp/scala-devel/${USER:shared}/scalac-compile-server-port, which allows local users to write to arbitrary class files and consequently gain…
- CVE-2022-28355Apr 2, 2022risk 0.00cvss —epss 0.01
randomUUID in Scala.js before 1.10.0 generates predictable values.