In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation. An authenticated attacker could get root access via the suid applications socat, ip udhcpc and ifplugd.
References
| Link | Resource |
|---|---|
| https://cert.vde.com/en/advisories/VDE-2021-047 | Vendor Advisory |
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Information
Published : 2022-04-27 09:15
Updated : 2022-05-11 10:51
NVD link : CVE-2021-34591
Mitre link : CVE-2021-34591
JSON object : View
CWE
CWE-250
Execution with Unnecessary Privileges
Advertisement
Products Affected
bender
- icc15xx_firmware
- cc613
- cc612_firmware
- cc612