Design/Logic Flaw

2023-10-2006:15:00

PRIOn knowledge base

www.prio-n.com

secudos qiata

domos os

insecure permissions

low-privileged user access

previewrm.sh

daily cronjob

root user

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user.