CVE-2019-9189

Опубликовано: 05 июн. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Средний

Описание

Prima Systems FlexAir, Versions 2.4.9api3 and prior. The application allows the upload of arbitrary Python scripts when configuring the main central controller. These scripts can be immediately executed because of root code execution, not as a web server user, allowing an authenticated attacker to gain full system access.

Ссылки

http://packetstormsecurity.com/files/155273/Prima-Access-Control-2.3.35-Script-Upload-Remote-Code-Execution.html
https://applied-risk.com/index.php/download_file/view/199/165
Third Party Advisory
https://applied-risk.com/labs/advisories
Third Party Advisory
https://applied-risk.com/resources/ar-2019-007
Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-211-02
http://packetstormsecurity.com/files/155273/Prima-Access-Control-2.3.35-Script-Upload-Remote-Code-Execution.html
https://applied-risk.com/index.php/download_file/view/199/165
Third Party Advisory
https://applied-risk.com/labs/advisories
Third Party Advisory
https://applied-risk.com/resources/ar-2019-007
Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-211-02

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:primasystems:flexair:*:*:*:*:*:*:*:*

Версия до 2.3.38 (включая)

EPSS

Процентиль: 96%

0.22186

Средний

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-36c5-5h9q-3jvp

github

больше 3 лет назад

On Prima Systems FlexAir devices through 2.4.9api3, an authenticated user can upload Python (.py) scripts and execute arbitrary code with root privileges.