216.73.217.64

CVE-2024-34477

· Published 27/05/2024 14:15 · Modified 27/05/2024 14:15

Labels: CVE-2024-34477 2024-05-27CVE-2024-34477[email protected]

Essential information

Published
27/05/2024 14:15
Modified
27/05/2024 14:15
Author
Creator
CISA KEV
No
CWE

Description

configureNFS in lib/common/functions.sh in FOG through 1.5.10 allows local users to gain privileges by mounting a crafted NFS share (because of no_root_squash and insecure). In order to exploit the vulnerability, someone needs to mount an NFS share in order to add an executable file as root. In addition, the SUID bit must be added to this file.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References