Medium severity6.3NVD Advisory· Published Apr 14, 2021· Updated Apr 6, 2026

CVE-2021-29449

Description

Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. Multiple privilege escalation vulnerabilities were discovered in version 5.2.4 of Pi-hole core. See the referenced GitHub security advisory for details.

Affected products

Pi Hole/Pi Hole
cpe:2.3:a:pi-hole:pi-hole:*:*:*:*:*:*:*:*
Range: <=5.2.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/163715/Pi-Hole-Remove-Commands-Linux-Privilege-Escalation.htmlnvdExploitThird Party AdvisoryVDB Entry
github.com/pi-hole/pi-hole/security/advisories/GHSA-3597-244c-wrpjnvdExploitThird Party Advisory
www.compass-security.com/fileadmin/Research/Advisories/2021-02_CSNC-2021-008_Pi-hole_Privilege_Escalation.txtnvdExploitThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.410
epss	0.009
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000