CloudLinux CageFS 7.0.8-2 Insufficiently Restricted Proxy Command

Jan. 26, 2024, 3:48 p.m. |

CloudLinux CageFS versions 7.0.8-2 and below insufficiently restrict file paths supplied to the sendmail proxy command. This allows local users to read and write arbitrary files of certain file formats outside the CageFS environment.

arbitrary files cloudlinux command environment file files local proxy restricted

Visit resource

More from packetstormsecurity.com / Packet Storm

Ubuntu Security Notice USN-6757-2 16 hours ago | packetstormsecurity.com

arbitrary code attacker code crash +16

Ubuntu Security Notice USN-6762-1 16 hours ago | packetstormsecurity.com

arbitrary code attacker attackers code +15

SOPlanning 1.52.00 SQL Injection 16 hours ago | packetstormsecurity.com

injection php projects sql +5

SOPlanning 1.52.00 Cross Site Request Forgery 16 hours ago | packetstormsecurity.com

forgery php request version +2

SOPlanning 1.52.00 Cross Site Scripting 16 hours ago | packetstormsecurity.com

cross site scripting php scripting version +2

Red Hat Security Advisory 2024-2679-03 16 hours ago | packetstormsecurity.com

advisory enterprise free linux +7

Red Hat Security Advisory 2024-2674-03 16 hours ago | packetstormsecurity.com

advisory enterprise kernel linux +5

Red Hat Security Advisory 2024-2071-03 16 hours ago | packetstormsecurity.com

advisory bugs container fix +10

Red Hat Security Advisory 2024-2068-03 16 hours ago | packetstormsecurity.com

advisory bugs container denial of service +13

Security Specialist

@ Nestlé | St. Louis, MO, US, 63164

View on infosec-jobs.com

Cybersecurity Analyst

@ Dana Incorporated | Pune, MH, IN, 411057

View on infosec-jobs.com

Sr. Application Security Engineer

@ CyberCube | United States

View on infosec-jobs.com

Linux DevSecOps Administrator (Remote)

@ Accenture Federal Services | Arlington, VA

View on infosec-jobs.com

Cyber Security Intern or Co-op

@ Langan | Parsippany, NJ, US, 07054-2172

View on infosec-jobs.com

Security Advocate - Application Security

@ Datadog | New York, USA, Remote

View on infosec-jobs.com

View more jobs

all InfoSec news

CloudLinux CageFS 7.0.8-2 Insufficiently Restricted Proxy Command

More from packetstormsecurity.com / Packet Storm

Jobs in InfoSec / Cybersecurity

Security Specialist

Cybersecurity Analyst

Sr. Application Security Engineer

Linux DevSecOps Administrator (Remote)

Cyber Security Intern or Co-op

Security Advocate - Application Security