CVE-2019-13024
CVE-2019-13024
Vexday Risk Score
35Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Proof of concept
Popular PoC on GitHub (11 stars) — exploitation code widely available.
CVSS —EPSS 32.2%KEV nãoPoC públicaNuclei —Metasploit —Patch —
Lifecycle
01 Jul 2019Published on NVD
02 Jul 2019Public PoC
Weaponization speed
same dayto first PoC
Weaponized quickly — attackers prioritized this vulnerability. Patch urgently.
Recommendation: Plan a near-term fix — a public PoC already exists.
Centreon 18.x before 18.10.6, 19.x before 19.04.3, and Centreon web before 2.8.29 allows the attacker to execute arbitrary system commands by using the value "init_script"-"Monitoring Engine Binary" in main.get.php to insert a arbitrary command into the database, and execute it by calling the vulnerable page www/include/configuration/configGenerate/xml/generateFiles.php (which passes the inserted value to the database to shell_exec without sanitizing it, allowing one to execute system arbitrary commands).
Affected products
n/a · n/apublic PoCs found — 5
githubgithub.com/mhaskar/CVE-2019-13024★ 11githubgithub.com/get-get-get-get/Centreon-RCE★ 1cve_referencepacketstormsecurity.com/files/153504/Centreon-19.04-Remote-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47069unverifiedexploitdbwww.exploit-db.com/exploits/52156unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://packetstormsecurity.com/files/153504/Centreon-19.04-Remote-Code-Execution.htmlhttps://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10/centreon-18.10.6.htmlhttps://documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04/centreon-19.04.3.htmlhttps://gist.github.com/mhaskar/c4255f6cf45b19b8a852c780f50576dahttps://github.com/centreon/centreon/pull/7694https://shells.systems/centreon-v19-04-remote-code-execution-cve-2019-13024/