Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.11 views

CVE-2023-32696

CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...

8.8CVSS7.8AI score0.00794EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/30 6:33 p.m.21 views

CVE-2023-32696 Excessive permissions for ckan user

CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...

8.8CVSS9.3AI score0.00794EPSS
Exploits0References2
OSV
OSV
added 2023/05/30 6:33 p.m.16 views

CVE-2023-32696 Excessive permissions for ckan user

CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...

8.8CVSS9.1AI score0.00794EPSS
Exploits0References4
CVE
CVE
added 2023/05/30 6:33 p.m.71 views

CVE-2023-32696

CVE-2023-32696 affects CKAN where, prior to versions 2.9.9 and 2.10.1, the ckan user (www-data) owned code/files inside the Docker container and could use sudo. This permission set could enable code execution or privilege escalation if an arbitrary file write bug existed. The vulnerability has pa...

8.8CVSS9.1AI score0.00794EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/30 6:33 p.m.10 views

CVE-2023-32696 Excessive permissions for ckan user

CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...

8.8CVSS8.1AI score0.00794EPSS
Exploits0References2
Rows per page
Query Builder