Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-44466
HistoryDec 30, 2021 - 10:15 p.m.

Improper access control

2021-12-3022:15:00
PRIOn knowledge base
www.prio-n.com
1

0.0004 Low

EPSS

Percentile

5.1%

JSON

Bitmask Riseup VPN 0.21.6 contains a local privilege escalation flaw due to improper access controls. When the software is installed with a non-default installation directory off of the system root, the installer fails to properly set ACLs. This allows lower privileged users to replace the VPN executable with a malicious one. When a higher privileged user such as an Administrator launches that executable, it is possible for the lower privileged user to escalate to Administrator privileges.

CPENameOperatorVersion
bitmask_riseup_vpneq0.21.6

Related

cve 1
cnvd 1
cvelist 1
nvd 1
cve
cve
CVE-2021-44466
2021-12-30 22:15:09
cnvd
cnvd
Bitmask Access Control Error Vulnerability
2022-01-03 00:00:00
cvelist
cvelist
CVE-2021-44466
2021-12-30 21:31:24
nvd
nvd
CVE-2021-44466
2021-12-30 22:15:09

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for PRION:CVE-2021-44466
cve1cnvd1cvelist1nvd1