Lucene search
MitreCVELIST:CVE-2019-9189HistoryJun 05, 2019 - 5:20 p.m.
CVE-2019-9189
2019-06-0517:20:09
mitre
www.cve.org
Prima Systems FlexAir, Versions 2.4.9api3 and prior. The application allows the upload of arbitrary Python scripts when configuring the main central controller. These scripts can be immediately executed because of root code execution, not as a web server user, allowing an authenticated attacker to gain full system access.
Related
exploitpack
exploitpack
Prima Access Control 2.3.35 - Arbitrary File Upload
2019-11-12 00:00:00
FlexAir Access Control 2.4.9api3 - Remote Code Execution
2019-11-12 00:00:00
nvd
nvd
CVE-2019-9189
2019-06-05 18:29:01
exploitdb
exploitdb
FlexAir Access Control 2.4.9api3 - Remote Code Execution
2019-11-12 00:00:00
Prima Access Control 2.3.35 - Arbitrary File Upload
2019-11-12 00:00:00
cve
cve
CVE-2019-9189
2019-06-05 18:29:01
packetstorm
packetstorm
Prima Access Control 2.3.35 Script Upload Remote Code Execution
2019-11-12 00:00:00
prion
prion
Design/Logic Flaw
2019-06-05 18:29:00
ics
ics
Prima Systems FlexAir
2019-07-30 12:00:00