High severityNVD Advisory· Published Jul 15, 2025· Updated Apr 15, 2026
CVE-2025-34116
CVE-2025-34116
Description
A remote command execution vulnerability exists in IPFire before version 2.19 Core Update 101 via the 'proxy.cgi' CGI interface. An authenticated attacker can inject arbitrary shell commands through crafted values in the NCSA user creation form fields, leading to command execution with web server privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
6- bugzilla.ipfire.org/show_bug.cginvd
- raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/http/ipfire_proxy_exec.rbnvd
- www.asafety.fr/en/vuln-exploit-poc/xss-rce-ipfire-2-19-core-update-101-remote-command-execution/nvd
- www.exploit-db.com/exploits/39765nvd
- www.ipfire.org/news/ipfire-2-19-core-update-101-releasednvd
- www.vulncheck.com/advisories/ipfire-authenticated-rcenvd
News mentions
0No linked articles in our index yet.