5 matches found
CVE-2024-12903
Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A non-admin user could exploit weak file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised machine. It has been identified that full control...
CVE-2024-12903
creationtimestamp| type| source ---|---|--- 2024-12-23 12:54:32+00:00| seen| https://infosec.exchange/users/cve/statuses/113702238404448794 2024-12-23 13:15:24+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldxz72amfl22 2024-12-23 14:59:30+00:00| seen|...
CVE-2024-12903 Incorrect default permissions in Biamp Evoko Home
Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A non-admin user could exploit weak file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised machine. It has been identified that full control...
CVE-2024-12903 Incorrect default permissions in Biamp Evoko Home
Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A non-admin user could exploit weak file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised machine. It has been identified that full control...
CVE-2024-12903
CVE-2024-12903 concerns Biamp Evoko Home, affected in versions 2.4.2–2.7.4. The root cause is “incorrect default permissions” leading to full-control on the Everyone group, enabling a non-admin user with local access to escalate privileges, execute arbitrary code, and maintain persistence on the ...