Lucene search
Veracode Vulnerability DatabaseVERACODE:39236HistoryFeb 12, 2023 - 2:41 p.m.
Privilege Escalation
2023-02-1214:41:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
privilege escalation
vulnerable software
resource allocations
promote containers
remote shell
wings daemon security
EPSS
0.001
Percentile
43.3%
github.com/pterodactyl/wings is vulnerable to Privilege Escalation. An attacker is able to change their resource allocations, promote containers to privileged mode, or potentially add ssh authorized keys to a remote shell on the target machine by creating new files on the host system. In order for an attacker to exploit this vulnerability, they must have an existing server controlled by the Wings Daemon.
Related
prion
prion
Design/Logic Flaw
2023-02-08 19:15:00
cvelist
cvelist
github
github
Pterodactyl Wings contains UNIX Symbolic Link (Symlink) Following
2023-02-08 18:19:56
nvd
nvd
CVE-2023-25152
2023-02-08 19:15:11
cve
cve
CVE-2023-25152
2023-02-08 19:15:11
veracode
veracode
Arbitrary File Deletion
2023-02-12 15:47:21
osv
osv
openvas
openvas
Ubuntu: Security Advisory (USN-5972-1)
2023-03-28 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2023-03-27 00:00:00