MidnightBSD

Advisories for cli_project

CVE-2016-10538 MEDIUM

The package `node-cli` before 1.0.0 insecurely uses the lock_file and log_file. Both of these are temporary, but it allows the starting user to overwrite any file they have access to.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,CWE-362,

Products Affected

Vendor Product Version
debian debian_linux 8.0
cli_project cli *