CyberSec.Space Logo
Back to CVE Browser

CVE-2021-38557

HIGH
8.8
CVSS Severity Score
EPSS Score0.1020%
EPSS Percentile17.08th
PublishedAug 24, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh with any executable content.

Affected Platforms (CPE)

πŸ“¦
Raspap

Raspap

= 2.6.6

References & Advisories

πŸ”— https://github.com/RaspAP/raspap-webgui
πŸ”— https://github.com/RaspAP/raspap-webgui/blob/fabc48c7daae4013b9888f266332e510b196a062/installers/raspap.sudoers
πŸ”— https://zerosecuritypenetrationtesting.com/?page_id=306
πŸ”— https://github.com/RaspAP/raspap-webgui
πŸ”— https://github.com/RaspAP/raspap-webgui/blob/fabc48c7daae4013b9888f266332e510b196a062/installers/raspap.sudoers
πŸ”— https://zerosecuritypenetrationtesting.com/?page_id=306

Related Vulnerabilities

CVE-2021-333579.8

A vulnerability exists in RaspAP 2.6 to 2.6.5 in the "iface" GET parameter in /ajax/networking/get_netcfg.php, when the "iface" pa...

CVE-2020-245728.8

An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (...

CVE-2021-333568.8

Multiple privilege escalation vulnerabilities in RaspAP 1.5 to 2.6.5 could allow an authenticated remote attacker to inject arbitr...

CVE-2021-333588.8

Multiple vulnerabilities exist in RaspAP 2.3 to 2.6.5 in the "interface", "ssid" and "wpa_passphrase" POST parameters in /hostapd,...

CVE-2021-38557 Detail & Impact Analysis | CVSS 8.8 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space