← back
CVE-2018-9276

CVE-2018-9276

CVSS 7.2 HIGHEPSS 87.2%● KEVCWE-78
In short

PRTG Network Monitor allows administrators with console access to inject and execute arbitrary operating system commands through malformed parameters in sensor or notification settings. This could let a malicious admin take control of the monitoring system and connected devices.

Technical detail

OS command injection vulnerability (CWE-78) in PRTG Network Monitor <18.2.39 affecting sensor and notification management endpoints. Attack vector requires authenticated access with administrative privileges; attacker can inject shell commands via malformed parameters to achieve arbitrary code execution on the server and monitored devices.

Summary generated and translated by AI from the official description.
An issue was discovered in PRTG Network Monitor before 18.2.39. An attacker who has access to the PRTG System Administrator web console with administrative privileges can exploit an OS command injection vulnerability (both on the server and on devices) by sending malformed parameters in sensor or notification management scenarios.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found9
githubgithub.com/wildkindcc/CVE-2018-927637githubgithub.com/BardLaudian/CVE_2018_92760githubgithub.com/andyfeili/CVE-2018-92760githubgithub.com/alvinsmith-eroad/CVE-2018-92760githubgithub.com/AC8999/PRTG-Network-Monitor-18.2.38---Authenticated-Remote-Code-Execution-CVE-2018-92760cve_referencepacketstormsecurity.com/files/148334/PRTG-Command-Injection.htmlunverifiedcve_referencewww.exploit-db.com/exploits/46527/unverifiedcve_referencepacketstormsecurity.com/files/161183/PRTG-Network-Monitor-Remote-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/46527unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/148334/PRTG-Command-Injection.htmlhttp://packetstormsecurity.com/files/161183/PRTG-Network-Monitor-Remote-Code-Execution.htmlhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-9276https://www.exploit-db.com/exploits/46527/http://www.securityfocus.com/archive/1/542103/100/0/threaded