High severity8.3OSV Advisory· Published Jul 29, 2024· Updated Apr 15, 2026
CVE-2024-41637
CVE-2024-41637
Description
RaspAP before 3.1.5 allows an attacker to escalate privileges: the www-data user has write access to the restapi.service file and also possesses Sudo privileges to execute several critical commands without a password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
billz/raspap-webguiPackagist | <= 3.1.4 | — |
Affected products
2- Range: 1.0, 1.3.1, 1.4.0, …
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.