2 matches found
CVE-2021-33658
atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled in the default configuration...
CVE-2021-33658
CVE-2021-33658 affects atune (A-Tune) before 0.3-0.8. The issue arises from authenticating as a local user and running curl to access the local atune URL interface, enabling local privilege escalation or file modification. The default configuration does not enforce authentication, enabling unauth...