CVE-2024-26307

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.openwall.com/lists/oss-security/2024/03/21/2", "name": "http://www.openwall.com/lists/oss-security/2024/03/21/2", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://www.openwall.com/lists/oss-security/2024/03/21/2", "name": "http://www.openwall.com/lists/oss-security/2024/03/21/2", "tags": ["Mailing List"], "refsource": ""}, {"url": "https://lists.apache.org/thread/5shhw8x8m271hd2wfwzqzwgf36pmc4pl", "name": "https://lists.apache.org/thread/5shhw8x8m271hd2wfwzqzwgf36pmc4pl", "tags": ["Mailing List"], "refsource": ""}, {"url": "https://lists.apache.org/thread/5shhw8x8m271hd2wfwzqzwgf36pmc4pl", "name": "https://lists.apache.org/thread/5shhw8x8m271hd2wfwzqzwgf36pmc4pl", "tags": ["Mailing List"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Possible race condition vulnerability in Apache Doris.\nSome of code using `chmod()` method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file.\nThis could theoretically happen, but the impact would be minimal.\nThis issue affects Apache Doris: before 1.2.8, before 2.0.4.\n\nUsers are recommended to upgrade to version 2.0.4, which fixes the issue."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-26307", "ASSIGNER": "security@apache.org"}}, "impact": {}, "publishedDate": "2024-03-21T10:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:apache:doris:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.2.8"}, {"cpe23Uri": "cpe:2.3:a:apache:doris:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "2.0.4", "versionStartIncluding": "2.0.0"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-06-17T13:50Z"}