CVE-2019-15107
CVE-2019-15107
In short
Webmin versions up to 1.920 allow attackers to run arbitrary commands on a server through the password change function. This is critical because it gives complete control over the affected system.
Technical detail
The 'old' parameter in password_change.cgi is vulnerable to OS command injection (CWE-78), allowing unauthenticated or authenticated attackers to execute arbitrary system commands with the privileges of the Webmin process. Exploitation requires network access to the Webmin interface and can result in complete system compromise.
Summary generated and translated by AI from the official description.
An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 46
githubgithub.com/jas502n/CVE-2019-15107★ 65githubgithub.com/MuirlandOracle/CVE-2019-15107★ 55githubgithub.com/K3ysTr0K3R/CVE-2019-15107-EXPLOIT★ 10githubgithub.com/hannob/webminex★ 8githubgithub.com/n0obit4/Webmin_1.890-POC★ 8githubgithub.com/ruthvikvegunta/CVE-2019-15107★ 6githubgithub.com/AdministratorGithub/CVE-2019-15107★ 5githubgithub.com/Mattb709/CVE-2019-15107-Scanner★ 3githubgithub.com/AleWong/WebminRCE-EXP-CVE-2019-15107-★ 3githubgithub.com/squid22/Webmin_CVE-2019-15107★ 3githubgithub.com/whokilleddb/CVE-2019-15107★ 3githubgithub.com/NasrallahBaadi/CVE-2019-15107★ 3githubgithub.com/wenruoya/CVE-2019-15107★ 2githubgithub.com/HACHp1/webmin_docker_and_exp★ 2githubgithub.com/MasterCode112/CVE-2019-15107★ 1githubgithub.com/TheAlpha19/MiniExploit★ 1githubgithub.com/Rayferrufino/Make-and-Break★ 1githubgithub.com/Mattb709/CVE-2019-15107-Webmin-RCE-PoC★ 1githubgithub.com/D4rkScare/CVE-2019-15107★ 0githubgithub.com/ketlerd/CVE-2019-15107★ 0githubgithub.com/ianxtianxt/CVE-2019-15107★ 0githubgithub.com/ch4ko/webmin_CVE-2019-15107★ 0githubgithub.com/cdedmondson/Modified-CVE-2019-15107★ 0githubgithub.com/diegojuan/CVE-2019-15107★ 0githubgithub.com/darrenmartyn/CVE-2019-15107★ 0githubgithub.com/hacknotes/CVE-2019-15107-Exploit★ 0githubgithub.com/CyberTuz/CVE-2019-15107_detection★ 0githubgithub.com/hadrian3689/webmin_1.920★ 0githubgithub.com/f0rkr/CVE-2019-15107★ 0githubgithub.com/psw01/CVE-2019-15107_webminRCE★ 0githubgithub.com/g1vi/CVE-2019-15107★ 0githubgithub.com/gozn/detect-CVE-2019-15107-by-pyshark★ 0githubgithub.com/h4ck0rman/CVE-2019-15107★ 0githubgithub.com/olingo99/CVE-2019-15107★ 0githubgithub.com/0x4r2/Webmin-CVE-2019-15107★ 0githubgithub.com/EdouardosStav/CVE-2019-15107-RCE-WebMin★ 0githubgithub.com/bayazid-bit/CVE-2019-15107★ 0githubgithub.com/ArtemCyberLab/Project-Exploitation-of-Webmin-Authentication-Vulnerability★ 0githubgithub.com/adampawelczyk/cve-2019-15107★ 0githubgithub.com/viglia/cve-2019-15107★ 0cve_referencewww.exploit-db.com/exploits/47230unverifiedcve_referencepacketstormsecurity.com/files/154141/Webmin-1.920-Remote-Command-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/154485/Webmin-1.920-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/154197/Webmin-1.920-password_change.cgi-Backdoor.htmlunverifiedcve_referencepacketstormsecurity.com/files/154141/Webmin-Remote-Comman-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47293unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/154141/Webmin-1.920-Remote-Command-Execution.htmlhttp://packetstormsecurity.com/files/154141/Webmin-Remote-Comman-Execution.htmlhttp://packetstormsecurity.com/files/154197/Webmin-1.920-password_change.cgi-Backdoor.htmlhttp://packetstormsecurity.com/files/154485/Webmin-1.920-Remote-Code-Execution.htmlhttps://attackerkb.com/topics/hxx3zmiCkR/webmin-password-change-cgi-command-injectionhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-15107https://www.exploit-db.com/exploits/47230http://www.pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.htmlhttp://www.webmin.com/security.html