Insecure Permissions Vulnerability in Wowza Streaming Engine

Insecure Permissions Vulnerability in Wowza Streaming Engine

CVE-2019-19455 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Wowza Streaming Engine before 4.8.5 has Insecure Permissions which may allow a local attacker to escalate privileges in / usr / local / WowzaStreamingEngine / manager / bin / in the Linux version of the server by writing arbitrary commands in any file and execute them as root. This issue was resolved in Wowza Streaming Engine 4.8.5.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.