CloudLinux CageFS 7.1.1-1 Token Disclosure

Jan. 26, 2024, 3:44 p.m. |

CloudLinux CageFS versions 7.1.1-1 and below pass the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user.

argument authentication authentication token cloudlinux code code execution command command line disclosure list local pass process token

Visit resource

More from packetstormsecurity.com / Packet Storm

Debian Security Advisory 5676-1 22 hours ago | packetstormsecurity.com

advisory arbitrary code chromium code +13

Ubuntu Security Notice USN-6747-2 22 hours ago | packetstormsecurity.com

attacker denial of service domains exploit +16

htmlLawed 1.2.5 Remote Command Execution 23 hours ago | packetstormsecurity.com

command concept exploit proof +1

Red Hat Security Advisory 2024-2651-03 23 hours ago | packetstormsecurity.com

advisory denial of service enterprise linux +7

Red Hat Security Advisory 2024-2645-03 23 hours ago | packetstormsecurity.com

advisory enterprise linux red hat +5

1,400 GitLab Servers Impacted By Exploited Vulnerability 23 hours ago | packetstormsecurity.com

data loss exploited flaw gitlab +3

Hackers Compromised Dropbox eSignature Service 23 hours ago | packetstormsecurity.com

compromised dropbox flaw hacker +2

Hacker Free-For-All Fights For Control Of Home And Office Routers Everywhere 23 hours ago | packetstormsecurity.com

botnet control email free +6

REvil Ransomware Scum Gets 14 Years, $16 Million Fine 23 hours ago | packetstormsecurity.com

cryptography cybercrime fraud hacker +5

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States

View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States

View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com

View more jobs

all InfoSec news

CloudLinux CageFS 7.1.1-1 Token Disclosure

More from packetstormsecurity.com / Packet Storm

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

SITEC- Systems Security Administrator- Camp HM Smith

Cyberspace Intelligence Analyst

General Manager, Cybersecurity, Google Public Sector

Cyber Security Advisor

Engineering Team Manager – Security Controls