Lucene search

CVE-2020-25507

🗓️ 28 Dec 2020 20:12:15Reported by [email protected]Type

An incorrect permission assignment during TeamworkCloud 18.0 thru 19.0 installation allows local unprivileged attacker to execute arbitrary code as root

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2020-25507	28 Dec 202019:33	–	cvelist
Prion	Code injection	28 Dec 202020:15	–	prion
CVE	CVE-2020-25507	28 Dec 202020:15	–	cve

Nvd

Node

3ds teamwork_cloudRange18.0–19.0

Source	Link
sick	www.sick.codes/sick-2020-002/
sick	www.sick.codes/finding-a-vulnerability-in-teamwork-cloud-server-nomagic-3ds-which-is-used-by-gov-enterprise-to-design-rockets-missiles-and-satellites
web	www.web.archive.org/web/20201219095507/https://docs.nomagic.com/display/TWCloud185SP1/Installation+on+Centos+7.
community	www.community.nomagic.com/finding-and-fixing-wrong-file-permission-twc-installation-t7165.html
github	www.github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md
docs	www.docs.nomagic.com/display/TWCloud190/Installation+on+Linux+using+scripts
web	www.web.archive.org/web/20201219155833/https://docs.nomagic.com/pages/viewpage.action

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Dec 2020 20:15Current

7.8High risk

Vulners AI Score7.8

CVSS27.2

CVSS37.8

EPSS0.00151

CWE-732