CVE-2020-12878

Published: 2021-02-18T00:15Z

Last Modified: 2024-11-21T05:00Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python user to root via a symlink attack that uses chown, related to /etc/init.d/S50dropbear.sh and the /WEB/python/.ssh directory. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt