CVE-2024-41637
Published
CVSS v3
8.3
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
RaspAP before 3.1.5 allows an attacker to escalate privileges: the www-data user has write access to the restapi.service file and also possesses Sudo privileges to execute several critical commands without a password.
The easiest, full-featured wireless router setup for Debian-based devices. Period.
GitHub