Name of the Vulnerable Software and Affected Versions: OpenWRT Luci LTS (affected versions not specified) Description: An issue in the luci-mod-rpc package allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package. The vulnerability is related to insufficient protection of registration data within the LuCI web interface. Recommendations: At the moment, there is no information about a newer version that contains a fix for this…Read More
PT-2024-7903
