cbcvebase.
CVE-2008-3931
published 2008-09-04

CVE-2008-3931: javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

PriorityP417medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.35%
27.1th percentile
javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Affected

2 ranges
VendorProductVersion rangeFixed in
debianr-base< r-base 2.7.2-1 (bookworm)r-base 2.7.2-1 (bookworm)
r_foundationr

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9LOW
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.