CVE-2021-20001

Summary

It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares (~/public_html), which could result in privilege escalation.

Affected Software

VendorProductVersion RangeStatus
Debiandebian-edu-config< 2.12.16affected

Weaknesses

  • insecure permissions

ADP Enrichment

CVE Program Container

Additional References

References