Vulnerabilities > CVE-2024-48911 - Incorrect Authorization vulnerability in Thinkst Opencanary

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

thinkst

CWE-863

NVD

Published: 2024-10-14

Updated: 2024-10-17

Summary

OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file. Prior to version 0.9.4, where the config file is stored in an unprivileged user directory but the daemon is executed by root, it’s possible for the unprivileged user to change the config file and escalate permissions when root later runs the daemon. Version 0.9.4 contains a fix for the issue.

Vulnerable Configurations

Part	Description	Count
Application	Thinkst Thinkst Opencanary *	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://github.com/thinkst/opencanary/security/advisories/GHSA-pf5v-pqfv-x8jj
https://github.com/thinkst/opencanary/commit/2c11575b1a3dd8b0df26a879ba856c0aa350c049
https://github.com/thinkst/opencanary/releases/tag/v0.9.4