Improper access control in Linux Workbooth Distro

Posted date 07/10/2024

Identificador

INCIBE-2024-0496

Importance

4 - High

Affected Resources

Distro Linux Workbooth 2.5.

Description

INCIBE has coordinated the publication of 1 medium severity vulnerability affecting Distro Linux Workbooth 2.5, a Linux distribution, which has been discovered by Rafael Pedrero.

These vulnerabilities have been assigned the following codes, CVSS v3.1 base score, CVSS vector and CWE vulnerability type for each vulnerability:

CVE-2024-9576: 7 | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H | CWE-284

Solution

There is no reported solution at this time as the product is obsolete.

Detail

CVE-2024-9576: vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user by manipulating the network configuration script.

References list

[Link deprecated] Site web

Etiquetas

0day
CNA
Escalada de privilegios
Linux
Operating system
Vulnerability