CVE-2018-17984

Published: Oct 4, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

An unanchored /[a-z]{2}/ regular expression in ISPConfig before 3.1.13 makes it possible to include arbitrary files, leading to code execution. This is exploitable by authenticated users who have local filesystem access.

Affected (1)

Products: Ispconfig: Ispconfig

Ispconfig

1 product

Ispconfig

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ispconfig Ispconfig	Before 3.1.13

Related CWEs

CWE-185

Incorrect Regular Expression

The product specifies a regular expression in a way that causes data to be improperly matched or compared.

References (6)

https://0x09al.github.io/security/ispconfig/exploit/vulnerability/2018/08/20/bug-or-backdoor-ispconfig-rce.html

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/0x09AL/0x09al.github.io/blob/master/_posts/2018-08-20-bug-or-backdoor-ispconfig-rce.markdown

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.ispconfig.org/blog/ispconfig-3-1-13-released-important-security-bugfix/

Source: cve@mitre.org

Vendor Advisory

https://0x09al.github.io/security/ispconfig/exploit/vulnerability/2018/08/20/bug-or-backdoor-ispconfig-rce.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://github.com/0x09AL/0x09al.github.io/blob/master/_posts/2018-08-20-bug-or-backdoor-ispconfig-rce.markdown

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.ispconfig.org/blog/ispconfig-3-1-13-released-important-security-bugfix/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.