In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql.
Metrics
Affected Vendors & Products
References
History
Fri, 29 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Proftpd
Proftpd proftpd |
|
CPEs | cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:* | |
Vendors & Products |
Proftpd
Proftpd proftpd |
|
Metrics |
cvssV3_1
|
Fri, 29 Nov 2024 05:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-29T00:00:00
Updated: 2024-11-29T15:06:01.811Z
Reserved: 2024-10-08T00:00:00
Link: CVE-2024-48651
Vulnrichment
Updated: 2024-11-29T15:05:36.787Z
NVD
Status : Awaiting Analysis
Published: 2024-11-29T05:15:05.963
Modified: 2024-11-29T15:15:17.403
Link: CVE-2024-48651
Redhat
No data.