CVE-2016-3643 – SolarWinds Virtualization Manager Privilege Escalation Vulnerability

https://notcve.org/view.php?id=CVE-2016-3643

15 Jun 2016 — SolarWinds Virtualization Manager 6.3.1 and earlier allow local users to gain privileges by leveraging a misconfiguration of sudo, as demonstrated by "sudo cat /etc/passwd." SolarWinds Virtualization Manager 6.3.1 y versiones anteriores permite a usuarios locales obtener privilegios aprovechando una mala configuración de sudo, según lo demostrado por "sudo cat /etc/passwd". Solarwinds Virtualization Manager versions 6.3.1 and below suffer from a privilege escalation vulnerability due to a misconfiguration o... • https://packetstorm.news/files/id/137487 • CWE-264: Permissions, Privileges, and Access Controls •