CVE-2020-14162

CVE-2020-14162

An issue was discovered in Pi-Hole through 5.0. The local www-data user has sudo privileges to execute the pihole core script as root without a password, which could allow an attacker to obtain root access via shell metacharacters to this script’s setdns command.

Source: CVE-2020-14162

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다