CVE-2023-40361

HIGH

SECUDOS Qiata 4.13 - Privilege Escalation via Insecure previewRm.sh Cronjob Permissions

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-40361. PoCs published by vianic.

AI-analyzed exploit summary This repository contains a detailed technical writeup for CVE-2023-40361, an improper permissions vulnerability in SECUDOS Qiata's cronjob script. The advisory explains how an attacker with local access can modify the script to escalate privileges to root.

Description

SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user.

Exploits (1)

nomisec WRITEUP 1 stars
by vianic · poc
https://github.com/vianic/CVE-2023-40361

This repository contains a detailed technical writeup for CVE-2023-40361, an improper permissions vulnerability in SECUDOS Qiata's cronjob script. The advisory explains how an attacker with local access can modify the script to escalate privileges to root.

Classification
Writeup 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: SECUDOS Qiata 4.13
Auth required
Prerequisites: Local access to the DOMOS operating system · Admin user privileges
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.8
EPSS 0.0027
EPSS Percentile 19.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-732
Status published
Products (1)
secudos/qiata 4.13
Published Oct 20, 2023
Tracked Since Feb 18, 2026