Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9
CVSSv2

CVE-2019-16663

Published: 28/10/2019 Updated: 29/10/2019
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 802
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Rconfig

Vulnerability Summary

An issue exists in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to search.crud.php because the catCommand parameter is passed to the exec function without filtering, which can lead to command execution.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rconfig rconfig 3.9.2

Exploits

Exploit DB: rConfig 3.9.2 Command Injection
This Metasploit module exploits an unauthenticated command injection vulnerability in rConfig versions 392 and prior The install directory is not automatically removed after installation, allowing unauthenticated users to execute arbitrary commands via the ajaxServerSettingsChkphp file as the web server user This module has been tested success ...

Github Repositories

https://github.com/mhaskar/CVE-2019-16663

The official exploit for rConfig 3.9.2 Post-auth Remote Code Execution CVE-2019-16663

CVE-2019-16663 The official exploit code for Centreon v1904 Remote Code Execution CVE-2019-16662

https://github.com/TheCyberGeek/CVE-2019-19268

New Found 0-days!

CVE-2019-19268 Affected Version: rConfig 392 [Description] Multiple attack vectors in rConfig v392 due to misconfiguration, which allows local users to execute root commands via sudo [Discoverers] dmw0ng - Discord: dmw0ng#4449 TheCyberGeek - Discord: TheCyberGeek#1892 Email: cybergeek19@protonmailcom The Sudo configuration in rConfig 392 gives the apache user access

https://github.com/fab1ano/rconfig-cves

Vulnerable rConfig Images Demo images for CVE-2019-16662 and CVE-2019-16663 Info This repository contains the setup to create two docker images running rConfig 392 Each image contains an /exploitpy to trigger the vulnerability For further info have a look at the corresponding blog post Run You can just pull the image from docker hub: docker run -it fab1ano/cve-2019-1666[

References

CWE-78https://shells.systems/rconfig-v3-9-2-authenticated-and-unauthenticated-rce-cve-2019-16663-and-cve-2019-16662/https://rconfig.com/downloadhttps://gist.github.com/mhaskar/e7e454c7cb0dd9a139b0a43691e258a0https://drive.google.com/open?id=1XmR2MSMb3cKARFk3XxmPkwz6GhAP1JxLhttps://drive.google.com/open?id=1kQGmboKfwob4RwlMjnv6ER2Za1GUptOihttps://nvd.nist.govhttps://github.com/mhaskar/CVE-2019-16663https://packetstormsecurity.com/files/155186/rConfig-3.9.2-Command-Injection.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-47626CVE-2024-3400physicalCVE-2024-31426CVE-2024-22423CVE-2024-22438injectlocal usersCVE-2024-3797
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook