CVE-2024-30270

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Apr 4, 2024

Updated: Apr 5, 2024

CWE ID 22

Summary

CVE-2024-30270 is a newly identified vulnerability affecting mailcow, an open-source groupware/email suite based on Docker. The issue, which impacts versions prior to 2024-04, combines path traversal and arbitrary code execution. This vulnerability specifically targets the `rspamd_maps()` function, enabling authenticated admin users to overwrite any file writable by the www-data user through improper path validation. The exploit chain culminates in the execution of arbitrary commands on the server. Mailcow's developers have addressed this vulnerability with a patch in version 2024-04.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vMkya5
https://www.cve.org/CVERecord?id=CVE-2024-30270
https://nvd.nist.gov/vuln/detail/CVE-2024-30270

Back to Vulnerability Database

CVE-2024-30270

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations