QwikSec

Security Database

CVE

CWE

Training

CVE-2024-48911

Published: Oct 14, 2024

Modified: Oct 15, 2024

PUBLISHED

Description

OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file. Prior to version 0.9.4, where the config file is stored in an unprivileged user directory but the daemon is executed by root, it’s possible for the unprivileged user to change the config file and escalate permissions when root later runs the daemon. Version 0.9.4 contains a fix for the issue.

Vendor	Product	Versions
thinkst	opencanary	affected `< 0.9.4`

Weaknesses (CWE)

References

https://github.com/thinkst/opencanary/security/advisories/GHSA-pf5v-pqfv-x8jj

x_refsource_CONFIRM

https://github.com/thinkst/opencanary/commit/2c11575b1a3dd8b0df26a879ba856c0aa350c049

x_refsource_MISC

https://github.com/thinkst/opencanary/releases/tag/v0.9.4

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.