← back
CVE-2021-39273

CVE-2021-39273

EPSS 2.7%
In XeroSecurity Sn1per 9.0 (free version), insecure permissions (0777) are set upon application execution, allowing an unprivileged user to modify the application, modules, and configuration files. This leads to arbitrary code execution with root privileges.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/1N3/Sn1per/issues/358https://github.com/1N3/Sn1per/releaseshttps://github.com/nikip72/CVE-2021-39273-CVE-2021-39274