Summary: xcfa before 5.0.1 creates temporary files insecurely which could allow local users to launch a symlink attack and overwrite arbitrary files.Published: Thursday, November 21, 2019 - 23:15cvss: 5.0