Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-1525
HistoryMay 05, 2009 - 8:30 p.m.

CVE-2009-1525

2009-05-0520:30:00
CWE-20
[email protected]
web.nvd.nist.gov
20
cve-2009-1525
privilege escalation
shell metacharacters
directadmin
jbmc software
nvd

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.0%

JSON

CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.

Affected configurations

NVD
Node
jbmc-softwaredirectadminRange1.333
OR
jbmc-softwaredirectadminMatch0.95
OR
jbmc-softwaredirectadminMatch1
OR
jbmc-softwaredirectadminMatch1.1
OR
jbmc-softwaredirectadminMatch1.01
OR
jbmc-softwaredirectadminMatch1.02
OR
jbmc-softwaredirectadminMatch1.2
OR
jbmc-softwaredirectadminMatch1.3
OR
jbmc-softwaredirectadminMatch1.03
OR
jbmc-softwaredirectadminMatch1.04
OR
jbmc-softwaredirectadminMatch1.05
OR
jbmc-softwaredirectadminMatch1.06
OR
jbmc-softwaredirectadminMatch1.07
OR
jbmc-softwaredirectadminMatch1.08
OR
jbmc-softwaredirectadminMatch1.09
OR
jbmc-softwaredirectadminMatch1.11
OR
jbmc-softwaredirectadminMatch1.12
OR
jbmc-softwaredirectadminMatch1.13
OR
jbmc-softwaredirectadminMatch1.14
OR
jbmc-softwaredirectadminMatch1.15
OR
jbmc-softwaredirectadminMatch1.16
OR
jbmc-softwaredirectadminMatch1.17
OR
jbmc-softwaredirectadminMatch1.18
OR
jbmc-softwaredirectadminMatch1.19
OR
jbmc-softwaredirectadminMatch1.21
OR
jbmc-softwaredirectadminMatch1.22
OR
jbmc-softwaredirectadminMatch1.23
OR
jbmc-softwaredirectadminMatch1.24
OR
jbmc-softwaredirectadminMatch1.25
OR
jbmc-softwaredirectadminMatch1.26
OR
jbmc-softwaredirectadminMatch1.27
OR
jbmc-softwaredirectadminMatch1.28
OR
jbmc-softwaredirectadminMatch1.29
OR
jbmc-softwaredirectadminMatch1.31
OR
jbmc-softwaredirectadminMatch1.32
OR
jbmc-softwaredirectadminMatch1.33
OR
jbmc-softwaredirectadminMatch1.081
OR
jbmc-softwaredirectadminMatch1.111
OR
jbmc-softwaredirectadminMatch1.121
OR
jbmc-softwaredirectadminMatch1.151
OR
jbmc-softwaredirectadminMatch1.152
OR
jbmc-softwaredirectadminMatch1.161
OR
jbmc-softwaredirectadminMatch1.171
OR
jbmc-softwaredirectadminMatch1.172
OR
jbmc-softwaredirectadminMatch1.173
OR
jbmc-softwaredirectadminMatch1.174
OR
jbmc-softwaredirectadminMatch1.181
OR
jbmc-softwaredirectadminMatch1.192
OR
jbmc-softwaredirectadminMatch1.193
OR
jbmc-softwaredirectadminMatch1.195
OR
jbmc-softwaredirectadminMatch1.196
OR
jbmc-softwaredirectadminMatch1.201
OR
jbmc-softwaredirectadminMatch1.202
OR
jbmc-softwaredirectadminMatch1.203
OR
jbmc-softwaredirectadminMatch1.204
OR
jbmc-softwaredirectadminMatch1.205
OR
jbmc-softwaredirectadminMatch1.206
OR
jbmc-softwaredirectadminMatch1.207
OR
jbmc-softwaredirectadminMatch1.211
OR
jbmc-softwaredirectadminMatch1.212
OR
jbmc-softwaredirectadminMatch1.213
OR
jbmc-softwaredirectadminMatch1.221
OR
jbmc-softwaredirectadminMatch1.222
OR
jbmc-softwaredirectadminMatch1.223
OR
jbmc-softwaredirectadminMatch1.224
OR
jbmc-softwaredirectadminMatch1.225
OR
jbmc-softwaredirectadminMatch1.226
OR
jbmc-softwaredirectadminMatch1.231
OR
jbmc-softwaredirectadminMatch1.232
OR
jbmc-softwaredirectadminMatch1.233
OR
jbmc-softwaredirectadminMatch1.234
OR
jbmc-softwaredirectadminMatch1.235
OR
jbmc-softwaredirectadminMatch1.241
OR
jbmc-softwaredirectadminMatch1.242
OR
jbmc-softwaredirectadminMatch1.243
OR
jbmc-softwaredirectadminMatch1.244
OR
jbmc-softwaredirectadminMatch1.251
OR
jbmc-softwaredirectadminMatch1.252
OR
jbmc-softwaredirectadminMatch1.253
OR
jbmc-softwaredirectadminMatch1.254
OR
jbmc-softwaredirectadminMatch1.255
OR
jbmc-softwaredirectadminMatch1.261
OR
jbmc-softwaredirectadminMatch1.262
OR
jbmc-softwaredirectadminMatch1.263
OR
jbmc-softwaredirectadminMatch1.264
OR
jbmc-softwaredirectadminMatch1.265
OR
jbmc-softwaredirectadminMatch1.266
OR
jbmc-softwaredirectadminMatch1.273
OR
jbmc-softwaredirectadminMatch1.274
OR
jbmc-softwaredirectadminMatch1.275
OR
jbmc-softwaredirectadminMatch1.281
OR
jbmc-softwaredirectadminMatch1.282
OR
jbmc-softwaredirectadminMatch1.285
OR
jbmc-softwaredirectadminMatch1.286
OR
jbmc-softwaredirectadminMatch1.291
OR
jbmc-softwaredirectadminMatch1.292
OR
jbmc-softwaredirectadminMatch1.293
OR
jbmc-softwaredirectadminMatch1.294
OR
jbmc-softwaredirectadminMatch1.295
OR
jbmc-softwaredirectadminMatch1.296
OR
jbmc-softwaredirectadminMatch1.297
OR
jbmc-softwaredirectadminMatch1.301
OR
jbmc-softwaredirectadminMatch1.302
OR
jbmc-softwaredirectadminMatch1.311
OR
jbmc-softwaredirectadminMatch1.312
OR
jbmc-softwaredirectadminMatch1.313
OR
jbmc-softwaredirectadminMatch1.314
OR
jbmc-softwaredirectadminMatch1.315
OR
jbmc-softwaredirectadminMatch1.321
OR
jbmc-softwaredirectadminMatch1.322
OR
jbmc-softwaredirectadminMatch1.323
OR
jbmc-softwaredirectadminMatch1.331
OR
jbmc-softwaredirectadminMatch1.332
OR
jbmc-softwaredirectadminMatch1.1741
OR
jbmc-softwaredirectadminMatch1.1941

Related

cvelist 1
prion 1
nvd 1
cvelist
cvelist
CVE-2009-1525
2009-05-05 20:00:00
prion
prion
Deserialization of untrusted data
2009-05-05 20:30:00
nvd
nvd
CVE-2009-1525
2009-05-05 20:30:00

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.0%

JSON
Related for CVE-2009-1525
cvelist1prion1nvd1