PT-2020-9210 · Aleos · Aleos

Published

2020-08-21

Updated

2020-10-19

CVE-2019-11847

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ALEOS versions prior to 4.11.0 ALEOS version 4.9.4 ALEOS version 4.4.9

Description An issue exists due to improper privilege management, allowing an authenticated user to escalate to root via the command shell.

Recommendations For ALEOS versions prior to 4.11.0, update to version 4.11.0 or later. For ALEOS version 4.9.4, update to a version later than 4.9.4. For ALEOS version 4.4.9, update to a version later than 4.4.9.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2019-11847

Affected Products

Aleos

PT-2020-9210 · Aleos · Aleos

CVE-2019-11847

Weakness Enumeration

Related Identifiers

Affected Products

References · 3