CVE-2022-48682 MEDIUM

CVE-2022-48682

Vendor N/A
Product n/a
Published April 26, 2024
Last update October 27, 2024

CVSS base score

6.0/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AC:H/AV:L/A:H/C:N/I:H/PR:L/S:U/UI:R

What the vulnerability does

01Description

In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file deletion via a symlink.

Key dates

02Disclosure timeline

April 26, 2024 CVE published
October 27, 2024 Record updated