CVE-2020-12878 – Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the py …

18 February 2021

Vuln ID: CVE-2020-12878

Published: 2021-02-18 00:15:17Z

Description: Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python user to root via a symlink attack that uses chown, related to /etc/init.d/S50dropbear.sh and the /WEB/python/.ssh directory.

Source: NVD.NIST.GOV

Date:

18 February 2021

Categorie(s):

NVD

Tag(s):

NVD

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication26 April 2024
Enhancing Cybersecurity Defenses: The role of Voice Cloning in Penetration Testing26 April 2024
Ensuring the Security and Efficiency of Web Applications and Systems26 April 2024
Integrated Residential Security Solutions to Employ in 202426 April 2024
Five ways security leaders can demonstrate the business value of cybersecurity26 April 2024