CRITICAL🇵🇱 Wersja polska

CVE-2015-2079

CVSS 9.9v3.1pub. 2025-04-28upd. 2025-05-14

Usermin 0.980 through 1.x before 1.660 allows uconfig_save.cgi sig_file_free remote code execution because it uses the two argument (not three argument) form of Perl open.

🤖 AI Analysis
How it works

The vulnerable uconfig_save.cgi script handles the sig_file_free parameter using the two-argument form of the Perl open() function instead of the safer three-argument version. In the two-argument form, Perl interprets special characters (e.g., pipe '|') in the filename as shell commands to be executed. An attacker can pass a crafted parameter value containing arbitrary system commands, which will be executed with the privileges of the Usermin server process.

Impact

An authenticated attacker can execute arbitrary code on the server (RCE), which can lead to complete system takeover, data theft, and violation of confidentiality, integrity, and availability of resources.

Mitigation & patch

Usermin should be updated to version 1.660 or later. If an update is not immediately possible, consider restricting access to the Usermin interface at the network level (firewall) to trusted IP addresses.

Who is affected

Usermin in versions from 0.980 to 1.x before 1.660

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Webmin Usermin

    APP
    Webmin
    0.980 – 1.660 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2022-35132HIGH8.8ten sam produkt

Usermin through 1.850 allows a remote authenticated user to execute OS commands via command injection in a fil...

CVE-2024-44762MEDIUM5.3ten sam produkt

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumer...

CVE-2024-36453MEDIUM6.1ten sam produkt

Cross-site scripting vulnerability exists in session_login.cgi of Webmin versions prior to 1.970 and Usermin v...

CVE-2023-41157MEDIUM5.4ten sam produkt

Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote attackers to inject a...

CVE-2023-41156MEDIUM5.4ten sam produkt

A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows r...