PT-2024-23328 · A10 Networks · A10 Thunder Adc
Published
2024-05-29
·
Updated
2024-09-24
·
CVE-2024-30369
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
A10 Thunder ADC (affected versions not specified)
Description
This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system. The flaw exists within the installer due to incorrect permissions on a file, allowing an attacker to escalate privileges and execute arbitrary code in the context of root.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
A10 Thunder Adc