Security Advisory

CVE-2025-9810

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-01 19:03:19

Last updated 2026-04-22 15:06:11

Assigner CyberArk

State PUBLISHED

Description

TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen("w") on the history path and subsequent chmod() on the same path.

← Browse all CVEs View on cve.org ↗