Skip to content

Instantly share code, notes, and snippets.

View RaspAP-Vulnerabilities.txt
Vulnerable Product Version: RaspAP 1.5 to (and including) 2.6.5
Vulnerability Type: Privilege Escalation due to Execution with Unnecessary Privileges (CWE-250)
Description: Multiple privilege escalation vulnerabilities in RaspAP 1.5 to 2.6.5 could allow an authenticated remote attacker to inject arbitrary commands to /installers/ component that can result in remote command execution with root privileges.
Vulnerable Product Version: RaspAP 2.6 to (and including) 2.6.5
Vulnerability Type: OS Command Injection (CWE-78)
Description: A vulnerability exists in RaspAP 2.6 to 2.6.5 in the "iface" GET parameter in /ajax/networking/get_netcfg.php, when the "iface" parameter value contains special characters such as ";" which enables an unauthenticated attacker to execute arbitrary OS commands.