CVE-2026-2817

Summary

Use of insecure directory in Spring Data Geode snapshot import extracts archives into predictable, permissive directories under the system temp location. On shared hosts, a local user with basic privileges can access another user’s extracted snapshot contents, leading to unintended exposure of cache data.

Affected Software

VendorProductVersion RangeStatus
VMwareSpring Data Geode2.0.0.RELEASE <= 2.7.18affected
VMwareSpring Data Gemfire1.7.0.RELEASE <= 2.2.13.RELEASEaffected

Weaknesses

  • CWE-538: CWE-538: Insertion of Sensitive Information into Externally-Accessible File or Directory
  • CWE-378: CWE-378: Creation of Temporary File With Insecure Permissions
  • CWE-379: CWE-379: Creation of Temporary File in Directory with Insecure Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References