In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system.
References
Link | Resource |
---|---|
https://www.contextis.com/en/resources/advisories/cve-2020-16282 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-20T15:23:07
Updated: 2020-08-20T15:23:07
Reserved: 2020-08-03T00:00:00
Link: CVE-2020-16282
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-08-20T16:15:11.613
Modified: 2020-08-24T18:33:22.407
Link: CVE-2020-16282
JSON object: View
Redhat Information
No data.
CWE