Vulnerabilities

CVE-2020-27985

by Fred · 23/11/2020

Security Onion v2 prior to 2.3.10 has an incorrect sudo configuration, which allows the administrative user to obtain root access without using the sudo password by editing and executing /home//SecurityOnion/setup/so-setup.

Date published : 2020-11-23

https://github.com/Security-Onion-Solutions/securityonion/commit/b14670030349a2747a00ace665568ab5f51ac47b

https://github.com/Security-Onion-Solutions/securityonion/releases

Similar

Tags: Cybersecurity Alert