A vulnerability in the “Proxy” functionality of the web...
High severity
Unreviewed
Published
Apr 30, 2025
to the GitHub Advisory Database
•
Updated Apr 30, 2025
Description
Published by the National Vulnerability Database
Apr 30, 2025
Published to the GitHub Advisory Database
Apr 30, 2025
Last updated
Apr 30, 2025
A vulnerability in the “Proxy” functionality of the web application of ctrlX OS allows a remote authenticated (lowprivileged) attacker to manipulate the “/etc/environment” file via a crafted HTTP request.
References