CVE-2017-13314 – Apache NetworkManagementService Local Privilege Escalation Vulnerability

11月 15, 2024
11:16 pm

CVE ID : CVE-2017-13314

Published : Nov. 15, 2024, 10:15 p.m. | 1 hour, 1 minute ago

Description : In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. This could lead to local escalation of privilege allowing users to access non-VPN networks, when they are supposed to be restricted to the VPN networks, with no additional execution privileges needed. User interaction is not needed for exploitation.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2017-13314 – Apache NetworkManagementService Local Privilege Escalation Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12963 – Code-projects Job Recruitment SQL Injection

CVE-2024-12964 – “1000 Projects Daily College Class Work Report Book SQL Injection Vulnerability”

CVE-2024-12962 – Code-Projects Job Recruitment SQL Injection Vulnerability

CVE-2024-54907 – TOTOLINK A3002R Remote Code Execution Vulnerability in boa FormWsc Handler

CVE-2024-12960 – Apache MCA 1.0 SQL Injection Vulnerability

CVE-2024-12961 – Apache MCA Portfolio Management System SQL Injection Vulnerability

CVE-2017-13314 – Apache NetworkManagementService Local Privilege Escalation Vulnerability

CVE-2017-13314 – Apache NetworkManagementService Local Privilege Escalation Vulnerability