Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-16232

An authenticated command injection vulnerability exists in IPFire Firewall before 2.21 Core Update 124 in backup.cgi. This allows an authenticated user with privileges for the affected page to execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.385
EPSS Ranking 97.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2018-16232
  • Ipfire » Ipfire » Version: 1.49
    cpe:2.3:a:ipfire:ipfire:1.49
  • Ipfire » Ipfire » Version: 2.1
    cpe:2.3:a:ipfire:ipfire:2.1
  • Ipfire » Ipfire » Version: 2.11
    cpe:2.3:a:ipfire:ipfire:2.11
  • Ipfire » Ipfire » Version: 2.13
    cpe:2.3:a:ipfire:ipfire:2.13
  • Ipfire » Ipfire » Version: 2.15
    cpe:2.3:a:ipfire:ipfire:2.15
  • Ipfire » Ipfire » Version: 2.17
    cpe:2.3:a:ipfire:ipfire:2.17
  • Ipfire » Ipfire » Version: 2.19
    cpe:2.3:a:ipfire:ipfire:2.19
  • Ipfire » Ipfire » Version: 2.21
    cpe:2.3:a:ipfire:ipfire:2.21


Products
Pricing
Contact Us

Shodan ® - All rights reserved