CVE-2012-10022

High CVSS 8.5

Overview

Kloxo versions 6.1.12 and earlier contain two setuid root binaries—lxsuexec and lxrestart—that allow local privilege escalation from uid 48. The lxsuexec binary performs a uid check and permits execution of arbitrary commands as root if the invoking user matches uid 48. This flaw enables attackers with Apache-level access to escalate privileges to root without authentication.

CWE: CWE-269 Published: 2025-08-01T21:15:25.773

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 8.5 (HIGH)
Detected tags: apache, priv_esc, unauth_access (tag impact: HIGH)

Recommended actions:

Fix privilege escalation urgently.
Enforce least-privilege and strengthen EDR detection.
Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags