FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-10-23T18:22:49
Updated: 2024-08-04T15:19:09.340Z
Reserved: 2020-08-28T00:00:00
Link: CVE-2020-24848
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-10-23T19:15:12.440
Modified: 2022-04-28T18:24:07.810
Link: CVE-2020-24848
Redhat
No data.