|CVSS SCORE||4.4, (AV:L/AC:M/Au:N/C:P/I:P/A:P)|
The specific flaw exists within the handling of a staging mode. The issue lies in the ability to change the configuration based on the presence of a file in an user-controlled location. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the application.
|CREDIT||MWR Labs - Alex Plaskett
Robert Miller and Georgi Geshev