Description

OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file. Prior to version 0.9.4, where the config file is stored in an unprivileged user directory but the daemon is executed by root, it’s possible for the unprivileged user to change the config file and escalate permissions when root later runs the daemon. Version 0.9.4 contains a fix for the issue.

Related CPE's

a

thinkst

opencanary

Vulnerable

References

https://github.com/thinkst/opencanary/commit/2c11575b1a3dd8b0df26a879ba856c0aa350c049

Patch

https://github.com/thinkst/opencanary/releases/tag/v0.9.4

Release Notes

https://github.com/thinkst/opencanary/security/advisories/GHSA-pf5v-pqfv-x8jj

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-863

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-10-14T19:15:12.323Z

1 year ago

Last modified

2024-10-17T19:13:37.147Z

1 year ago