VDB

CVE-2025-59349

CVE-2025-59349 PUBLISHED CVSS 2 LOW

Dragonfly's directories created via os.MkdirAll are not checked for permissions

EPSS 0.03% · 9.5th percentile

Risk Scores

CVSS 4.0
2
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P
EPSS Score
0.03%
9.5th percentile

Affected Products

VendorProductVersions
github.comdragonflyoss/dragonfly0
dragonflyossdragonfly< 2.1.0
linuxfoundationdragonfly0
d7y.iodragonfly/v20

Timeline

  • Jan 21, 1970 Security Advisory
  • Sep 17, 2025 CVE Published
  • Sep 18, 2025 EPSS Score
  • Sep 18, 2025 CVE Updated
  • Sep 25, 2025 EPSS Score
  • Oct 2, 2025 EPSS Score
  • Oct 4, 2025 Coalition ESS Score
  • Oct 6, 2025 Coalition ESS Score
  • Oct 9, 2025 EPSS Score
  • Oct 16, 2025 EPSS Score
  • Oct 23, 2025 EPSS Score
  • Oct 30, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›