Description
Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile() function at /core/io/FileUtil.java.
Remediation
References
https://github.com/dromara/hutool/issues/3103
Related Vulnerabilities
CVE-2021-21430 Vulnerability in maven package org.openapitools:openapi-generator-project
CVE-2022-0401 Vulnerability in npm package w-zip
CVE-2023-23936 Vulnerability in maven package org.webjars.npm:undici
CVE-2021-21366 Vulnerability in npm package xmldom
CVE-2022-38749 Vulnerability in maven package org.yaml:snakeyaml