Published: 06/06/2023 Updated: 12/06/2023

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 0

CloudPanel v2.2.2 allows malicious users to execute a path traversal.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mgt-commerce cloudpanel

CloudPanel versions 200 through 222 suffer from a privilege escalation vulnerability when a traversal is leveraged against clpctlWrapper for which all normal users have sudo access ...

CloudPanel-CVE-2023-33747 Cloudpanel 0-day Exploit Author: @EagleTube, @Mzulfahmy, @farphalabs Github : githubcom/datackmy/FallingSkies-CVE-2023-35885/blob/main/ Affected version: v200 – v230 Patched version: v231 Vendor homepage: CloudPanelio Product: CloudPanel References: wwwdatackmy/fallingskies-cloudpanel-0-day/ , [Write Up] Usage This tools

Privilege Escalation in CloudPanel

CVE-2023-33747 Cloudpanelio Author: @EagleTube Github : githubcom/EagleTube/CloudPanel/tree/main/CVE-2023-33747 Tested version: v200 – v222 Patched version: v230 Vendor homepage: CloudPanelio Product: CloudPanel Requirements : Need authenticated user on Cloudpanel SSH enabled to run the python script Usage : wget githubcom/EagleTube/CloudPan

CWE-22 https://cwe.mitre.org/data/definitions/269.html https://cwe.mitre.org/data/definitions/264.html https://github.com/EagleTube/CloudPanel https://cwe.mitre.org/data/definitions/35.html https://www.cloudpanel.io/docs/v2/changelog/http://packetstormsecurity.com/files/172768/CloudPanel-2.2.2-Privilege-Escalation-Path-Traversal.html https://nvd.nist.gov https://github.com/0xWhoami35/CloudPanel-CVE-2023-33747 https://github.com/EagleTube/CloudPanel https://packetstormsecurity.com/files/172768/CloudPanel-2.2.2-Privilege-Escalation-Path-Traversal.html

CVE-2023-33747

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect