Description
The product constructs pathnames from user input, but it does not handle or incorrectly handles a pathname containing a Windows device name such as AUX or CON. This typically leads to denial of service or an information exposure when the application attempts to process the pathname as a regular file.
Latest vulnerabilities for CWE-67
No vulnerabilities found using your search criteria
References
Description of CWE-67 on Mitre website