{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"descriptions":[{"lang":"en","value":"An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions (0777 /etc/environment). Any local unprivileged user can execute arbitrary code simply by writing to /etc/environment, which will force all users, including root, to execute arbitrary code during the next login or reboot. In addition, the entire home directory of the twcloud user at /home/twcloud is recursively given world writable permissions. This allows any local unprivileged attacker to execute arbitrary code, as twcloud. This product was previous named Cameo Enterprise Data Warehouse (CEDW)."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2021-01-04T18:14:21.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"tags":["x_refsource_MISC"],"url":"https://docs.nomagic.com/display/TWCloud190/Installation+on+Linux+using+scripts"},{"tags":["x_refsource_MISC"],"url":"https://github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md"},{"tags":["x_refsource_MISC"],"url":"https://sick.codes/sick-2020-002/"},{"tags":["x_refsource_CONFIRM"],"url":"https://community.nomagic.com/finding-and-fixing-wrong-file-permission-twc-installation-t7165.html"},{"tags":["x_refsource_MISC"],"url":"https://sick.codes/finding-a-vulnerability-in-teamwork-cloud-server-nomagic-3ds-which-is-used-by-gov-enterprise-to-design-rockets-missiles-and-satellites"},{"tags":["x_refsource_MISC"],"url":"https://web.archive.org/web/20201219155833/https://docs.nomagic.com/pages/viewpage.action?pageId=20846937"},{"tags":["x_refsource_MISC"],"url":"https://web.archive.org/web/20201219095507/https://docs.nomagic.com/display/TWCloud185SP1/Installation+on+Centos+7."}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2020-25507","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions (0777 /etc/environment). Any local unprivileged user can execute arbitrary code simply by writing to /etc/environment, which will force all users, including root, to execute arbitrary code during the next login or reboot. In addition, the entire home directory of the twcloud user at /home/twcloud is recursively given world writable permissions. This allows any local unprivileged attacker to execute arbitrary code, as twcloud. This product was previous named Cameo Enterprise Data Warehouse (CEDW)."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"https://docs.nomagic.com/display/TWCloud190/Installation+on+Linux+using+scripts","refsource":"MISC","url":"https://docs.nomagic.com/display/TWCloud190/Installation+on+Linux+using+scripts"},{"name":"https://github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md","refsource":"MISC","url":"https://github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md"},{"name":"https://sick.codes/sick-2020-002/","refsource":"MISC","url":"https://sick.codes/sick-2020-002/"},{"name":"https://community.nomagic.com/finding-and-fixing-wrong-file-permission-twc-installation-t7165.html","refsource":"CONFIRM","url":"https://community.nomagic.com/finding-and-fixing-wrong-file-permission-twc-installation-t7165.html"},{"name":"https://sick.codes/finding-a-vulnerability-in-teamwork-cloud-server-nomagic-3ds-which-is-used-by-gov-enterprise-to-design-rockets-missiles-and-satellites","refsource":"MISC","url":"https://sick.codes/finding-a-vulnerability-in-teamwork-cloud-server-nomagic-3ds-which-is-used-by-gov-enterprise-to-design-rockets-missiles-and-satellites"},{"name":"https://web.archive.org/web/20201219155833/https://docs.nomagic.com/pages/viewpage.action?pageId=20846937","refsource":"MISC","url":"https://web.archive.org/web/20201219155833/https://docs.nomagic.com/pages/viewpage.action?pageId=20846937"},{"name":"https://web.archive.org/web/20201219095507/https://docs.nomagic.com/display/TWCloud185SP1/Installation+on+Centos+7.","refsource":"MISC","url":"https://web.archive.org/web/20201219095507/https://docs.nomagic.com/display/TWCloud185SP1/Installation+on+Centos+7."}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T15:33:05.749Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://docs.nomagic.com/display/TWCloud190/Installation+on+Linux+using+scripts"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://sick.codes/sick-2020-002/"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://community.nomagic.com/finding-and-fixing-wrong-file-permission-twc-installation-t7165.html"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://sick.codes/finding-a-vulnerability-in-teamwork-cloud-server-nomagic-3ds-which-is-used-by-gov-enterprise-to-design-rockets-missiles-and-satellites"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://web.archive.org/web/20201219155833/https://docs.nomagic.com/pages/viewpage.action?pageId=20846937"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://web.archive.org/web/20201219095507/https://docs.nomagic.com/display/TWCloud185SP1/Installation+on+Centos+7."}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2020-25507","datePublished":"2020-12-28T19:33:43.000Z","dateReserved":"2020-09-14T00:00:00.000Z","dateUpdated":"2024-08-04T15:33:05.749Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}