CVE-2020-11498
N/A
N/A
Summary
Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tun_darwin.go or tun_windows.go. A user can also use Nebula to execute arbitrary code in the user's own context, e.g., for user-level persistence or to bypass security controls. NOTE: the vendor states that this "requires a high degree of access and other preconditions that are tough to achieve."
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/slackhq/nebula/pull/191
- http://www.pwn3d.org/posts/7918501-slack-nebula-relative-path-bug-bounty-disclosure
References
- https://github.com/slackhq/nebula/pull/191
- http://www.pwn3d.org/posts/7918501-slack-nebula-relative-path-bug-bounty-disclosure
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.