CNNVD-202508-767 Information
CNNVD ID
CNNVD-202508-767
Related CVE
- CNNVD Published: 2025-08-08
Description (Chinese)
Sourceforge WANem是Sourceforge开源的一款网络测试工具。 Sourceforge WANem v2.3版本存在安全漏洞,该漏洞源于result.php脚本未清理输入和SUID-root二进制文件dosu存在命令注入,可能导致远程代码执行和权限提升。
Description (English)
Sourceforge Wanem is a web-based testing tool for the Open Source of Sourceforge. There is a security loophole in version SourceFurrentWanem v.2.3, which stems from the uncleaning of input and the existence of command injections in the SUID-root binary file dosu, which may result in remote code execution and enhanced permissions.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Sourceforge
Published
2025-08-08
Last Modified
2026-02-24
References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/ https://sourceforge.net/projects/wanem/ https://www.exploit-db.com/exploits/21190 https://www.vulncheck.com/advisories/wan-emulator-command-execution https://access.redhat.com/security/cve/cve-2012-10041
Share on: