CVE-2019-14257

CVE-2019-14257

EPSS 0.6%

pyraw in Zenoss 2.5.3 allows local privilege escalation by modifying environment variables to redirect execution before privileges are dropped, aka ZEN-31765.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.coalfire.com/The-Coalfire-Blog https://www.coalfire.com/The-Coalfire-Blog/August-2019/Getting-more-from-a-compliance-test