CVE-2019-13359 - CERT CVE
ID CVE-2019-13359
Sažetak In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.836, a cwpsrv-xxx cookie allows a normal user to craft and upload a session file to the /tmp directory, and use it to become the root user.
Reference
CVSS
Base: 8.5
Impact: 10.0
Exploitability:6.8
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM SINGLE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE COMPLETE
CVSS vektor AV:N/AC:M/Au:S/C:C/I:C/A:C
Zadnje važnije ažuriranje 24-01-2023 - 18:57
Objavljeno 16-07-2019 - 18:15