CVE-2024-28139

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned as affected, so the information cannot be consolidated into a specific format.

Description The issue allows the www-data user to elevate its privileges because sudo is configured to allow the execution of the mount command as root without a password. This configuration enables the privileges to be escalated to the root user. The vendor has accepted the risk, indicating that this issue will not be resolved in the near future.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.