3 matches found
CVE-2019-11393
An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter...
CVE-2019-11393
An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter...
CVE-2019-11393
Affected product: M/Monit prior to version 3.7.3. Vulnerability: In /admin/users/update, unprivileged users can escalate to administrator by requesting a password change and supplying the admin parameter. Root cause: Privilege escalation through an unauthorized admin flag during password-change f...