An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package
Metrics
Affected Vendors & Products
References
History
Wed, 06 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Openwrt
Openwrt luci |
|
Weaknesses | CWE-522 | |
CPEs | cpe:2.3:a:openwrt:luci:*:*:*:*:*:*:*:* | |
Vendors & Products |
Openwrt
Openwrt luci |
|
Metrics |
cvssV3_1
|
Tue, 05 Nov 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-05T00:00:00
Updated: 2024-11-06T19:35:21.074Z
Reserved: 2024-10-28T00:00:00
Link: CVE-2024-51240
Vulnrichment
Updated: 2024-11-06T19:34:10.087Z
NVD
Status : Awaiting Analysis
Published: 2024-11-05T19:15:07.283
Modified: 2024-11-06T20:35:34.963
Link: CVE-2024-51240
Redhat
No data.