Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege management concerning sudo privileges, C-MOR is vulnerable to a privilege escalation attack. The Linux user www-data running the C-MOR web interface can execute some OS commands as root via Sudo without having to enter the root password. These commands, for example, include cp, chown, and chmod, which enable an attacker to modify the system's sudoers file in order to execute all commands with root privileges. Thus, it is possible to escalate the limited privileges of the user www-data to root privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
za-internet C-MOR Video Surveillance 安全漏洞
Vulnerability Description
za-internet C-MOR Video Surveillance是德国za-internet公司的一个网络视频监控系统。 za-internet C-MOR Video Surveillance 5.2401 版本存在安全漏洞,该漏洞源于对 sudo 权限的权限管理不当。
CVSS Information
N/A
Vulnerability Type
N/A