Security Advisory

CVE-2022-2104

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-24 15:00:31
Last updated 2025-04-16 17:51:54
Assigner icscert
State PUBLISHED

Description

The www-data (Apache web server) account is configured to run sudo with no password for many commands (including /bin/sh and /bin/bash).

← Browse all CVEs View on cve.org ↗