Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to gain root access on server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-11T12:04:49
Updated: 2024-08-03T21:55:12.281Z
Reserved: 2021-03-22T00:00:00
Link: CVE-2021-29005
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-11T13:15:07.323
Modified: 2024-11-21T06:00:30.647
Link: CVE-2021-29005
Redhat
No data.