Local Privilege Escalation Vulnerability in Cyclades Serial Console Server by Vertiv
CVE-2022-50927
8.5HIGH
Key Information:
- Vendor
Vertiv
- Vendor
- CVE Published:
- 13 January 2026
Badges
๐พ Exploit Exists๐ก Public PoC
What is CVE-2022-50927?
The Cyclades Serial Console Server 3.3.0 has a local privilege escalation vulnerability arising from excessive sudo privileges assigned to the admin user and admin group. This flaw allows attackers to exploit the default user configuration to manipulate system binaries, potentially leading to unauthorized root access. By leveraging this vulnerability, the threat actors can execute commands with elevated privileges, compromising the overall security of the affected system.
Affected Version(s)
Cyclades Serial Console Server 1.0.0 - 3.3.0
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
