An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system.
History

Thu, 08 Aug 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Enjayworld
Enjayworld enjay Crm
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:enjayworld:enjay_crm:1.0:*:*:*:*:*:*:*
Vendors & Products Enjayworld
Enjayworld enjay Crm

Wed, 07 Aug 2024 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Enjay
Enjay crm
Weaknesses CWE-284
CPEs cpe:2.3:a:enjay:crm:1.0:*:*:*:*:*:*:*
Vendors & Products Enjay
Enjay crm
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 07 Aug 2024 16:00:00 +0000

Type Values Removed Values Added
Description An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-08-07T00:00:00

Updated: 2024-08-07T20:16:45.507Z

Reserved: 2024-07-18T00:00:00

Link: CVE-2024-41308

cve-icon Vulnrichment

Updated: 2024-08-07T20:16:39.615Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-07T16:15:45.977

Modified: 2024-08-08T15:04:28.510

Link: CVE-2024-41308

cve-icon Redhat

No data.