Security Advisory

CVE-2025-54798

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-07 00:04:35

Last updated 2025-11-03 20:06:39

Assigner GitHub_M

State PUBLISHED

Description

tmp is a temporary file and directory creator for node.js. In versions 0.2.3 and below, tmp is vulnerable to an arbitrary temporary file / directory write via symbolic link dir parameter. This is fixed in version 0.2.4.

← Browse all CVEs View on cve.org ↗