N/A
CVE-2014-2667
EN Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2 through 3.5, when exist_ok is set to true and multiple threads are used, might allow local users to bypass intended file permissions by leveraging a separate application vulnerability before the umask has been set to the expected value.
EPSS
0.1%
percentile 18.8%
Apps suivies affectées
Configurations CPE vulnérables
| Vendor | Produit | Plateforme | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.0:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.1:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.2:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.3:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.4:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.5:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.2.6:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.0:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.1:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.2:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.3:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.4:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.5:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.3.6:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.4.0:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.4.1:*:*:*:*:*:*:* |
| python | python | Windows | — | cpe:2.3:a:python:python:3.4.2:*:*:*:*:*:*:* |