CVE-2019-9971
Last modified
CVE-2019-9971 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z (aka postrotate-command) option to tcpdump can be unsafe when used in conjunction with sudo.. EPSS estimates a 1.57% chance of exploitation in the next 30 days.
Description
PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z (aka postrotate-command) option to tcpdump can be unsafe when used in conjunction with sudo.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| 3cx | Phone System Firmware | 16.0.0.1570 |
| Debian | Debian Linux | All versions |
References
- https://www.gosecure.net/blogThird Party Advisory
- https://www.gosecure.net/blog/2022/05/31/security-advisory-multiple-vulnerabilities-impact-3cx-phone-system/Exploit, Third Party Advisory
- https://www.securusglobal.com/community/2014/03/17/how-i-got-root-with-sudo/Third Party Advisory
- https://www.gosecure.net/blogThird Party Advisory
- https://www.gosecure.net/blog/2022/05/31/security-advisory-multiple-vulnerabilities-impact-3cx-phone-system/Exploit, Third Party Advisory
- https://www.securusglobal.com/community/2014/03/17/how-i-got-root-with-sudo/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-9971?
How severe is CVE-2019-9971?
How do I fix CVE-2019-9971?
Are you affected by CVE-2019-9971?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST