Security Advisory

CVE-2024-11075

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-19 13:13:00

Last updated 2024-11-19 14:13:07

Assigner SICK AG

State PUBLISHED

Description

A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the underlying system (e.g. local or via SSH) a privilege escalation to the administrative level due to the usage of component vendor Docker images running with root permissions. Exploiting this misconfiguration leads to the fact that an attacker can gain administrative control. over the whole system.

← Browse all CVEs View on cve.org ↗