Lucene search
IlsaniH1:242119HistoryJun 21, 2017 - 3:42 p.m.
Internet Bug Bounty: Roundcube virtualmin privilege escalation (CVE-2017-8114)
2017-06-2115:42:20
ilsani
hackerone.com
108
EPSS
0.003
Percentile
71.5%
Description
Password plugin in its virtualmin driver allows to an attacker, that has a valid username/password to login in his web panel, to execute malicious inputs. This could allow to an attacker to reset victim’s password and in some scenarios getting a system shell.
CVE
CVE-2017-8114
Details
Related
osv
osv
CVE-2017-8114
2017-04-29 19:59:00
roundcube - security update
2017-05-07 00:00:00
gentoo
gentoo
RoundCube: Security bypass
2017-07-08 00:00:00
debiancve
debiancve
CVE-2017-8114
2017-04-29 19:59:00
nessus
nessus
Fedora 24 : roundcubemail (2017-c8448d0cad)
2017-05-09 00:00:00
Fedora 26 : roundcubemail (2017-7263e7d321)
2017-07-17 00:00:00
GLSA-201707-11 : RoundCube: Security bypass
2017-07-10 00:00:00
debian
debian
[SECURITY] [DLA 933-1] roundcube security update
2017-05-07 21:54:43
veracode
veracode
Arbitrary Password Reset
2020-12-06 03:36:27
prion
prion
Default credentials
2017-04-29 19:59:00
freebsd
freebsd
roundcube -- arbitrary password resets
2017-04-28 00:00:00
cvelist
cvelist
CVE-2017-8114
2017-04-29 19:00:00
mageia
mageia
Updated roundcubemail packages fix security vulnerability
2017-06-26 12:28:17
fedora
fedora
[SECURITY] Fedora 24 Update: roundcubemail-1.2.5-1.fc24
2017-05-08 22:24:10
[SECURITY] Fedora 26 Update: roundcubemail-1.2.5-1.fc26
2017-05-04 13:33:33
[SECURITY] Fedora 25 Update: roundcubemail-1.2.5-1.fc25
2017-05-08 22:33:33
nvd
nvd
CVE-2017-8114
2017-04-29 19:59:00
cve
cve
CVE-2017-8114
2017-04-29 19:59:00
openvas
openvas
Fedora Update for roundcubemail FEDORA-2017-c8448d0cad
2017-05-09 00:00:00
Debian: Security Advisory (DLA-933-1)
2018-01-24 00:00:00
Fedora Update for roundcubemail FEDORA-2017-ede53aa845
2017-05-09 00:00:00
alpinelinux
alpinelinux
CVE-2017-8114
2017-04-29 19:59:00
ubuntucve
ubuntucve
CVE-2017-8114
2017-04-29 00:00:00