In QuickBox Pro v2.5.8 and below, the config.php file has a variable which takes a GET parameter value and parses it into a shell_exec(''); function without properly sanitizing any shell arguments, therefore remote code execution is possible. Additionally, as the media server is running as root by default attackers can use the sudo command within this shell_exec(''); function, which allows for privilege escalation by means of RCE.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-24T12:26:11
Updated: 2024-08-04T04:32:13.597Z
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-44981
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-01-24T13:15:08.177
Modified: 2024-11-21T06:31:46.657
Link: CVE-2021-44981
Redhat
No data.