Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. This exploit allows Discord users with a high privilege level within the guild to bypass hierarchy checks when the application is in a specific condition that is beyond that user’s control. By abusing this exploit, it is possible to perform destructive actions within the guild the user has high privileges in. This exploit has been fixed in version 3.4.1. As a workaround, unloading the Mod module with unload mod or, disabling the massban command with command disable global massban can render this exploit not accessible. We still highly recommend updating to 3.4.1 to completely patch this issue.

Published at: October 28, 2020 at 01:15PM
View on website

There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an unprivileged user can check for the existence of any files on the system as root.

Published at: October 31, 2020 at 12:15AM
View on website

The API on Winston 1.5.4 devices is vulnerable to CSRF.

Published at: October 28, 2020 at 02:15PM
View on website

Winston 1.5.4 devices are vulnerable to command injection via the API.

Published at: October 28, 2020 at 01:15PM
View on website

Winston 1.5.4 devices make use of a Monit service (not managed during the normal user process) which is configured with default credentials.

Published at: October 28, 2020 at 02:15PM
View on website