Vulnerability Details CVE-2022-39986
A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary commands via the cfg_id parameter in /ajax/openvpn/activate_ovpncfg.php and /ajax/openvpn/del_ovpncfg.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.927
EPSS Ranking 99.7%
CVSS Severity
CVSS v3 Score 9.8
References
- http://packetstormsecurity.com/files/174190/RaspAP-2.8.7-Unauthenticated-Command-Injection.html
- https://github.com/RaspAP/raspap-webgui/blob/master/ajax/openvpn/activate_ovpncfg.php
- https://medium.com/%40ismael0x00/multiple-vulnerabilities-in-raspap-3c35e78809f2
- http://packetstormsecurity.com/files/174190/RaspAP-2.8.7-Unauthenticated-Command-Injection.html
- https://github.com/RaspAP/raspap-webgui/blob/master/ajax/openvpn/activate_ovpncfg.php
- https://medium.com/%40ismael0x00/multiple-vulnerabilities-in-raspap-3c35e78809f2
Products affected by CVE-2022-39986
-
cpe:2.3:a:raspap:raspap:2.8.0
-
cpe:2.3:a:raspap:raspap:2.8.1
-
cpe:2.3:a:raspap:raspap:2.8.2
-
cpe:2.3:a:raspap:raspap:2.8.3
-
cpe:2.3:a:raspap:raspap:2.8.4
-
cpe:2.3:a:raspap:raspap:2.8.5
-
cpe:2.3:a:raspap:raspap:2.8.6
-
cpe:2.3:a:raspap:raspap:2.8.7