In JetBrains Kotlin from 1.4-M1 to 1.4-RC (as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0) there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-08-08T20:21:43

Updated: 2024-08-04T13:30:21.817Z

Reserved: 2020-07-19T00:00:00

Link: CVE-2020-15824

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-08T21:15:11.233

Modified: 2024-11-21T05:06:15.350

Link: CVE-2020-15824

cve-icon Redhat

Severity : Important

Publid Date: 2020-08-06T00:00:00Z

Links: CVE-2020-15824 - Bugzilla