CVE-2017-13707

Name of the Vulnerable Software and Affected Versions Replibit Backup Manager versions prior to 2017.08.04

Description The issue concerns a privilege escalation that allows attackers to gain root privileges. This is achieved through the execution of sudo commands, which can be used to access the vi program and navigate the filesystem. The vulnerability enables modification of critical files, such as /etc/passwd, potentially compromising system integrity. The issue is related to insufficient access control in the vi service of the Backup Manager script set.

Recommendations For Replibit Backup Manager versions prior to 2017.08.04, update to version 2017.08.04 or later to resolve the issue. As a temporary workaround, consider restricting access to the vi program and limiting the use of sudo commands to minimize the risk of exploitation.