CVE-2020-16279

CVE-2020-16279 : The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user input being passed to the command line without sanitization. Multiple connected sources (NVD, Red Hat, CNVD, CNVD, PRION, etc.) confirm this RCE on RangeeOS 8.0.4. The...

CVE-2020-16282

RangeeOS 8.0.4 (Rangee GmbH) in its default configuration runs all components under the privileged root user, potentially allowing a local attacker to escape the restricted environment and fully compromise the operating system. The CVE entry notes this as a local action with root-level context, e...

CVE-2020-16281

Summary: CVE-2020-16281 affects RangeeOS 8.0.4 (Kommbox component) and can let a locally authenticated attacker escape a restricted environment and execute arbitrary code due to freely accessible context menus. The issue is documented across multiple sources (NVD, Red Hat, CNVD, etc.). What’s aff...

CVE-2020-16280

CVE-2020-16280 affects RangeeOS 8.0.4 modules, where credentials are stored in plaintext. A local attacker with OS access can obtain credentials for multiple users, including external-facing administrative services, domain users, and local administrators. The connected sources confirm plaintext c...