CVE-2025-70341

HIGH

App-Auto-Patch 3.4.2 - Privilege Escalation

Title source: llm

Description

Insecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to write arbitrary files.

References (4)

Scores

CVSS v3 7.8
EPSS 0.0002
EPSS Percentile 4.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-94 CWE-732
Status published

Affected Products (1)

app-auto-patch/app-auto-patch < 3.4.2

Timeline

Published Mar 04, 2026
Tracked Since Mar 04, 2026