Описание
FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.
Ссылки
- Broken Link
- ExploitIssue TrackingThird Party Advisory
- Broken Link
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.4 (включая)
cpe:2.3:a:fruitywifi_project:fruitywifi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.0003
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-269
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.
EPSS
Процентиль: 8%
0.0003
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-269