Vulnerabilities

CVE-2021-33356

by Fred · 09/06/2021

Multiple privilege escalation vulnerabilities in RaspAP 1.5 to 2.6.5 could allow an authenticated remote attacker to inject arbitrary commands to /installers/common.sh component that can result in remote command execution with root privileges.

Date published : 2021-06-09

https://gist.github.com/omriinbar/52c000c02a6992c6ce68d531195f69cf

https://github.com/RaspAP/raspap-webgui/blob/5a7b77459839c9420fac0d10ec28cee1af9bb782/installers/common.sh#L216

Similar

Tags: Cybersecurity Alert