Vulnerability Description
CloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cloudlinux | Cagefs | < 7.1.2-2 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/176790/CloudLinux-CageFS-7.1.1-1-Token-DiscExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2024/Jan/24ExploitMailing ListThird Party Advisory
- https://blog.cloudlinux.com/cagefs-lve-wrappers-and-bsock-have-been-rolled-out-tRelease Notes
- https://github.com/sbaresearch/advisories/tree/public/2020/SBA-ADV-20200707-01_C
- http://packetstormsecurity.com/files/176790/CloudLinux-CageFS-7.1.1-1-Token-DiscExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2024/Jan/24ExploitMailing ListThird Party Advisory
- https://blog.cloudlinux.com/cagefs-lve-wrappers-and-bsock-have-been-rolled-out-tRelease Notes
- https://github.com/sbaresearch/advisories/tree/public/2020/SBA-ADV-20200707-01_C
FAQ
What is CVE-2020-36771?
CVE-2020-36771 is a vulnerability with a CVSS score of 7.8 (HIGH). CloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and ...
How severe is CVE-2020-36771?
CVE-2020-36771 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-36771?
Check the references section above for vendor advisories and patch information. Affected products include: Cloudlinux Cagefs.