EPSS
Percentile
59.0%
pyro is vulnerable to arbitrary file write. The pid files are stored in the temporary directory location /tmp and opened as root user, which allows an attacker to abuse the vulnerability to overwrite arbitrary files via symlinks.
/tmp
github.com/irmen/Pyro3/commit/554e095a62c4412c91f981e72fd34a936ac2bf1e