An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Privilege escalation can occur via world writable files. The network configuration script has weak filesystem permissions. This results in write access for all authenticated users and the possibility to escalate from user privileges to administrative privileges.
References
Link | Resource |
---|---|
https://www.elspec-ltd.com/support/security-advisories/ |
Configurations
No configuration.
History
03 Aug 2024, 20:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-280 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
20 Mar 2024, 13:00
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-20 05:15
Updated : 2024-08-03 20:35
NVD link : CVE-2024-22078
Mitre link : CVE-2024-22078
CVE.ORG link : CVE-2024-22078
JSON object : View
Products Affected
No product.
CWE
CWE-280
Improper Handling of Insufficient Permissions or Privileges