Privilege Escalation Vulnerability in TitanHQ WebTitan

Privilege Escalation Vulnerability in TitanHQ WebTitan

CVE-2019-19014 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in TitanHQ WebTitan before 5.18. It has a sudoers file that enables low-privilege users to execute a vast number of commands as root, including mv, chown, and chmod. This can be trivially exploited to gain root privileges by an attacker with access.

Learn more about our Web App Pen Testing.