{"vulnerability": "cve-2022-24913", "sightings": [{"uuid": "d7519084-e64d-41bc-961c-e26b44684ddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24913", "type": "seen", "source": "https://t.me/cibsecurity/56409", "content": "\u203c CVE-2022-24913 \u203c\n\nVersions of the package com.fasterxml.util:java-merge-sort before 1.1.0 are vulnerable to Insecure Temporary File in the StdTempFileProvider() function in StdTempFileProvider.java, which uses the permissive File.createTempFile() function, exposing temporary file contents.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-12T07:30:03.000000Z"}]}