High severity7.5OSV Advisory· Published Nov 29, 2024· Updated Apr 15, 2026
CVE-2024-48651
CVE-2024-48651
Description
In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:rpm/opensuse/proftpd&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/proftpd&distro=openSUSE%20Tumbleweedpkg:rpm/suse/proftpd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6
< 1.3.8b-150600.13.6.1+ 2 more
- (no CPE)range: < 1.3.8b-150600.13.6.1
- (no CPE)range: < 1.3.8c-1.1
- (no CPE)range: < 1.3.8b-150600.13.6.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.