3 matches found
CVE-2024-28137
A local attacker with low privileges can perform a privilege escalation with an init script due to a TOCTOU vulnerability...
CVE-2024-28137 PHOENIX CONTACT: privilege escalation due to a TOCTOU vulnerability in the CHARX Series
A local attacker with low privileges can perform a privilege escalation with an init script due to a TOCTOU vulnerability...
CVE-2024-28137
CVE-2024-28137 concerns the PHOENIX CONTACT CHARX SEC-3100 series. The connected documents describe a local, low-privilege attacker able to achieve privilege escalation through a TOCTOU vulnerability in an init script (notably via the /etc/init.d/user-applications script, with symlink abuse cited...