Security Advisory

CVE-2020-12878

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-17 23:07:11

Last updated 2024-08-04 12:11:18

Assigner mitre

State PUBLISHED

Description

Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python user to root via a symlink attack that uses chown, related to /etc/init.d/S50dropbear.sh and the /WEB/python/.ssh directory.

← Browse all CVEs View on cve.org ↗