Unrated severityNVD Advisory· Published Jun 15, 2019· Updated Aug 4, 2024
CVE-2019-12840
CVE-2019-12840
Description
In Webmin through 1.910, any user authorized to the "Package Updates" module can execute arbitrary commands with root privileges via the data parameter to update.cgi.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Webmin/Webmindescription
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/153372/Webmin-1.910-Remote-Command-Execution.htmlmitrex_refsource_MISC
- www.securityfocus.com/bid/108790mitrevdb-entryx_refsource_BID
- pentest.com.tr/exploits/Webmin-1910-Package-Updates-Remote-Command-Execution.htmlmitrex_refsource_MISC
- www.exploit-db.com/exploits/46984mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.