Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to gain root access on server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-10-11T12:04:49

Updated: 2024-08-03T21:55:12.281Z

Reserved: 2021-03-22T00:00:00

Link: CVE-2021-29005

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-10-11T13:15:07.323

Modified: 2024-11-21T06:00:30.647

Link: CVE-2021-29005

cve-icon Redhat

No data.