CVE Vulnerabilities

CVE-2024-39755

Improper Ownership Management

Published: Oct 03, 2024 | Modified: Dec 18, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.

Weakness

The product assigns the wrong ownership, or does not properly verify the ownership, of an object or resource.

Potential Mitigations

References