CVE-2020-36771 - CloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In so

CVE-2020-36771

Summary

CloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user.

References

https://blog.cloudlinux.com/cagefs-lve-wrappers-and-bsock-have-been-rolled-out-to-100
http://seclists.org/fulldisclosure/2024/Jan/24
http://packetstormsecurity.com/files/176790/CloudLinux-CageFS-7.1.1-1-Token-Disclosure.html
https://github.com/sbaresearch/advisories/tree/public/2020/SBA-ADV-20200707-01_CloudLinux_CageFS_Token_Disclosure

Vulnerable Configurations

cpe:2.3:a:cloudlinux:cagefs:-:*:*:*:*:*:*:*
cpe:2.3:a:cloudlinux:cagefs:-:*:*:*:*:*:*:*
cpe:2.3:a:cloudlinux:cagefs:7.1.1-1:*:*:*:*:*:*:*
cpe:2.3:a:cloudlinux:cagefs:7.1.1-1:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

28-03-2024 - 19:15

Published

22-01-2024 - 14:15

Last modified

28-03-2024 - 19:15