CVE-2024-36814: 
Linux openSUSE vulnerability analysis and mitigation

CVE-2024-36814 is an arbitrary file read vulnerability affecting AdGuard Home versions before v0.107.52. The vulnerability allows authenticated attackers to access arbitrary files as root on the system running AdGuard Home. The vulnerability was discovered by security researcher Jack Moran and was assigned a CVSS score of 7.1, indicating high severity (SecurityOnline, Happy Little Accidents).

The vulnerability exists in AdGuard Home's custom filter list feature, which allows users to specify URLs or absolute file paths for filtering. When installed with root privileges, AdGuard Home writes its configuration to the /opt/AdGuardHome directory with -rw-r--r-- permissions, making it readable by any user. An authenticated attacker can exploit this by adding system files (like /etc/shadow) as custom filters, causing AdGuard Home to copy the contents to a world-readable location in the data/filters directory (Happy Little Accidents).

The vulnerability allows attackers to read sensitive system files, including password hashes from /etc/shadow, configuration files containing credentials, and other privileged information. This is particularly dangerous in shared environments where multiple users have access to the system running AdGuard Home (SecurityOnline).

The vulnerability has been patched in AdGuard Home version v0.107.53. Users are strongly advised to update their installations immediately. System administrators should verify file permissions within /opt/AdGuardHome and restrict access to configuration files until they can apply the patch. Additionally, limiting exposure of the AdGuard Home dashboard and enforcing strong passwords can reduce the risk of exploitation (SecurityOnline).