nvd-json-data-feeds/CVE-2020/CVE-2020-367xx/CVE-2020-36771.json

{
  "id": "CVE-2020-36771",
  "sourceIdentifier": "secalert@redhat.com",
  "published": "2024-01-22T14:15:07.530",
  "lastModified": "2024-01-26T16:15:21.483",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "CloudLinux\n CageFS 7.1.1-1 or below passes the authentication token as command line\n argument. In some configurations this allows local users to view it via\n the process list and gain code execution as another user.\n\n\n"
    },
    {
      "lang": "es",
      "value": "CloudLinux CageFS 7.1.1-1 o inferior pasa el token de autenticaci\u00f3n como argumento de l\u00ednea de comando. En algunas configuraciones, esto permite a los usuarios locales verlo a trav\u00e9s de la lista de procesos y obtener la ejecuci\u00f3n del c\u00f3digo como otro usuario."
    }
  ],
  "metrics": {},
  "weaknesses": [
    {
      "source": "secalert@redhat.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-214"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://seclists.org/fulldisclosure/2024/Jan/24",
      "source": "secalert@redhat.com"
    },
    {
      "url": "https://blog.cloudlinux.com/cagefs-lve-wrappers-and-bsock-have-been-rolled-out-to-100",
      "source": "secalert@redhat.com"
    }
  ]
}
Auto-Update: 2024-01-22T15:00:25.373801+00:00 2024-01-22 15:00:29 +00:00			`{`
			`"id": "CVE-2020-36771",`
			`"sourceIdentifier": "secalert@redhat.com",`
			`"published": "2024-01-22T14:15:07.530",`
Auto-Update: 2024-01-26T17:00:35.248459+00:00 2024-01-26 17:00:39 +00:00			`"lastModified": "2024-01-26T16:15:21.483",`
Auto-Update: 2024-01-22T15:00:25.373801+00:00 2024-01-22 15:00:29 +00:00			`"vulnStatus": "Awaiting Analysis",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "CloudLinux\n CageFS 7.1.1-1 or below passes the authentication token as command line\n argument. In some configurations this allows local users to view it via\n the process list and gain code execution as another user.\n\n\n"`
Auto-Update: 2024-01-26T17:00:35.248459+00:00 2024-01-26 17:00:39 +00:00			`},`
			`{`
			`"lang": "es",`
			`"value": "CloudLinux CageFS 7.1.1-1 o inferior pasa el token de autenticaci\u00f3n como argumento de l\u00ednea de comando. En algunas configuraciones, esto permite a los usuarios locales verlo a trav\u00e9s de la lista de procesos y obtener la ejecuci\u00f3n del c\u00f3digo como otro usuario."`
Auto-Update: 2024-01-22T15:00:25.373801+00:00 2024-01-22 15:00:29 +00:00			`}`
			`],`
			`"metrics": {},`
			`"weaknesses": [`
			`{`
			`"source": "secalert@redhat.com",`
			`"type": "Secondary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-214"`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
Auto-Update: 2024-01-26T17:00:35.248459+00:00 2024-01-26 17:00:39 +00:00			`{`
			`"url": "http://seclists.org/fulldisclosure/2024/Jan/24",`
			`"source": "secalert@redhat.com"`
			`},`
Auto-Update: 2024-01-22T15:00:25.373801+00:00 2024-01-22 15:00:29 +00:00			`{`
			`"url": "https://blog.cloudlinux.com/cagefs-lve-wrappers-and-bsock-have-been-rolled-out-to-100",`
			`"source": "secalert@redhat.com"`
			`}`
			`]`
			`}`