Command Injection Vulnerability in IPFire Firewall
CVE-2018-16232

8.8HIGH

Key Information:

Vendor: Ipfire
Status: Ipfire
Vendor: CVE Published:; 17 October 2018

What is CVE-2018-16232?

An authenticated command injection vulnerability has been identified in the IPFire Firewall software prior to version 2.21 Core Update 124. This security flaw allows authenticated users with access to the backup.cgi component to execute arbitrary commands on the server. By exploiting this vulnerability, attackers could potentially manipulate the firewall's functionality or access sensitive information, leading to unauthorized actions and compromising the network’s security. It is crucial for users of affected versions to apply the necessary updates to mitigate the risk.

References

https://doddsecurity.com/213/command-injection-on-ipfire-...

x_refsource_MISC

https://www.ipfire.org/news/ipfire-2-21-core-update-124-r...

x_refsource_CONFIRM

EPSS Score

37% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 17, 2018
Vulnerability Reserved
Aug 30, 2018

CVE-2018-16232 Data

JSON

Ipfire

What is CVE-2018-16232?

References

EPSS Score

CVSS V3.1

Timeline