2 matches found
CVE-2024-41637
RaspAP before 3.1.5 allows an attacker to escalate privileges: the www-data user has write access to the restapi.service file and also possesses Sudo privileges to execute several critical commands without a password...
CVE-2024-41637
CVE-2024-41637 affects the RaspAP project prior to 3.1.5. According to provided sources, the issue arises because the www-data user has write access to the restapi.service file and also possesses sudo privileges to run several critical commands without a password, enabling privilege escalation to...