Vulnerabilities

CVE-2018-10057

by Fred · 05/06/2018

The remote management interface of cgminer 4.10.0 and bfgminer 5.5.0 allows an authenticated remote attacker to write the miner configuration file to arbitrary locations on the server due to missing basedir restrictions (absolute directory traversal).

Date published : 2018-06-05

https://github.com/tintinweb/pub/tree/master/pocs/cve-2018-10057

http://www.openwall.com/lists/oss-security/2018/06/03/1

Similar

Tags: Cybersecurity Alert