CVE-2020-24848
N/A
N/A
Summary
FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/xtr4nge/FruityWifi/issues/278
- https://gist.github.com/harsh-bothra/5be73cfd53f1c5bea307c702ae83ff42
References
- https://github.com/xtr4nge/FruityWifi/issues/278
- https://gist.github.com/harsh-bothra/5be73cfd53f1c5bea307c702ae83ff42
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.