CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-38557

HIGH
8.8
CVSS Severity Score
EPSS Score0.1020%
EPSS Percentile17.08th
Published2021年8月24日
Last Modified2024年11月21日

Vulnerability Description

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh with any executable content.

Affected Platforms (CPE)

📦
Raspap

Raspap

= 2.6.6

References & Advisories

🔗 https://github.com/RaspAP/raspap-webgui
🔗 https://github.com/RaspAP/raspap-webgui/blob/fabc48c7daae4013b9888f266332e510b196a062/installers/raspap.sudoers
🔗 https://zerosecuritypenetrationtesting.com/?page_id=306
🔗 https://github.com/RaspAP/raspap-webgui
🔗 https://github.com/RaspAP/raspap-webgui/blob/fabc48c7daae4013b9888f266332e510b196a062/installers/raspap.sudoers
🔗 https://zerosecuritypenetrationtesting.com/?page_id=306

相关漏洞威胁

CVE-2021-333579.8

A vulnerability exists in RaspAP 2.6 to 2.6.5 in the "iface" GET parameter in /ajax/networking/get_netcfg.php, when the "iface" pa...

CVE-2020-245728.8

An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (...

CVE-2021-333568.8

Multiple privilege escalation vulnerabilities in RaspAP 1.5 to 2.6.5 could allow an authenticated remote attacker to inject arbitr...

CVE-2021-333588.8

Multiple vulnerabilities exist in RaspAP 2.3 to 2.6.5 in the "interface", "ssid" and "wpa_passphrase" POST parameters in /hostapd,...