CVE-2021-28100

Summary

Priam uses File.createTempFile, which gives the permissions on that file -rw-r–r–. An attacker with read access to the local filesystem can read anything written there by the Priam process.

Affected Software

VendorProductVersion RangeStatus
n/aNetflix OSS PriamAll versionsaffected

Weaknesses

  • Local Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References