Security Advisory

CVE-2023-25355

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-04 00:00:00

Last updated 2025-02-13 15:51:55

Assigner mitre

State PUBLISHED

Description

CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions. A user who has the ability to run commands as the `daemon` user on a sipXcom server can overwrite a service file, and escalate their privileges to `root`.

← Browse all CVEs View on cve.org ↗