logo

Database

Lack of data validation - Path Traversal In renderdoc

Description

RenderDoc before 1.27 allows local privilege escalation via a symlink attack. It relies on the /tmp/RenderDoc directory regardless of ownership.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-338652. NVD-2023-338653. OSV-DEBIAN-2023-338654. OSV-2023-338655. SECURITY-TRACKER-CVE-2023-33865

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.