Opening temporary files without appropriate measures or controls can leave the file, its contents and any function that it impacts vulnerable to attack.

What CVEs are caused by CWE-378?

41 recorded CVEs are attributed to CWE-378, including CVE-2024-39872, CVE-2025-32438, CVE-2025-27148.

How do you prevent CWE-378?

Many contemporary languages have functions which properly handle this condition. Older C temp file functions are especially susceptible.

How is CWE-378 detected?

Automated Static Analysis: Automated static analysis, commonly referred to as Static Application Security Testing (SAST), can find some instances of this weakness by analyzing source code (or binary/compiled code) without having to execute it. Typically, this is done by building a model of data flow and control flow, then searching for potentially-vulnerable patterns that connect "sources" (origins of input) with "sinks" (destinations where the data interacts with external components, a lower layer such as the OS, etc.)

What are the consequences of CWE-378?

Exploiting CWE-378 can lead to: Read Application Data, Other.

Is CWE-378 actively exploited?

41 recorded CVEs are caused by CWE-378; none are currently in CISA's KEV catalog of actively exploited flaws.

CWE-378: Creation of Temporary File With Insecure Permissions

Real-world CVEs

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

In the following code examples a temporary file is created and written to. After using the temporary file, the file is closed and deleted from the file system.

Vulnerable example

// write data to tmp file
FILE *stream;

Vulnerable example

java

try {

Real-world CVEs

CWE-378: Creation of Temporary File With Insecure Permissions

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-378?

What CVEs are caused by CWE-378?

How do you prevent CWE-378?

How is CWE-378 detected?

What are the consequences of CWE-378?

Is CWE-378 actively exploited?

References

Stay ahead of CWE-378

Real-world CVEs

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-378?

What CVEs are caused by CWE-378?

How do you prevent CWE-378?

How is CWE-378 detected?

What are the consequences of CWE-378?

Is CWE-378 actively exploited?

References

Stay ahead of CWE-378