CVE-2023-34204 Information

Description

imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Both of these are typically world-writable and thus (for example) an attacker can modify imapsync’s cache and overwrite files belonging to the user who runs it.

Reference

https://github.com/imapsync/imapsync/issues/399