Unrated severityCISA KEVNVD Advisory· Published Jul 2, 2018· Updated Oct 21, 2025

CVE-2018-9276

Description

An issue was discovered in PRTG Network Monitor before 18.2.39. An attacker who has access to the PRTG System Administrator web console with administrative privileges can exploit an OS command injection vulnerability (both on the server and on devices) by sending malformed parameters in sensor or notification management scenarios.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/46527/mitreexploitx_refsource_EXPLOIT-DB
packetstormsecurity.com/files/148334/PRTG-Command-Injection.htmlmitrex_refsource_MISC
packetstormsecurity.com/files/161183/PRTG-Network-Monitor-Remote-Code-Execution.htmlmitrex_refsource_MISC
www.securityfocus.com/archive/1/542103/100/0/threadedmitremailing-listx_refsource_BUGTRAQ

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.070
exploit	0.030
kev	0.120
patch	0.000
ransomware	0.000