CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2024-46256

CVSS 9.8v3.1pub. 2024-09-27upd. 2025-06-03

A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an attacker to RCE via Add Let's Encrypt Certificate.

πŸ€– AI Analysis
How it works

The vulnerability (CWE-77) is located in the requestLetsEncryptSsl function in the backend/internal/certificate.js file. An attacker can inject malicious system commands through the Let's Encrypt certificate addition function without requiring any permissions. Unvalidated input data is passed directly to the system command interpreter, resulting in its execution in the server context.

Impact

An unauthenticated attacker can remotely execute arbitrary commands on the server (RCE), which in practice means the ability to gain full control of the system, data exfiltration, installation of malicious software, or disruption of services.

Mitigation & patch

Patches available from the vendor must be applied according to the references β€” the fix was introduced in commit 99cce7e2b0da2978411cedd7cac5fffbe15bc466 in the project repository on GitHub. An immediate update to a version containing this patch is recommended.

Who is affected

Nginx Proxy Manager version 2.11.3

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Jc21 nginx Proxy Manager

    APP
    Jc21
    2.11.3
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-27224CRITICAL9.8ten sam produkt

An issue found in NginxProxyManager v.2.9.19 allows an attacker to execute arbitrary code via a lua script to ...

CVE-2024-39935HIGH8.8ten sam produkt

jc21 NGINX Proxy Manager before 2.11.3 allows backend/internal/certificate.js OS command injection by an authe...

CVE-2023-23596HIGH8.8ten sam produkt

jc21 NGINX Proxy Manager through 2.9.19 allows OS command injection. When creating an access list, the backend...

CVE-2025-50579MEDIUM5.3ten sam produkt

A CORS misconfiguration in Nginx Proxy Manager v2.12.3 allows unauthorized domains to access sensitive data, p...

CVE-2024-46257MEDIUM6.3ten sam produkt

A Command injection vulnerability in requestLetsEncryptSslWithDnsChallenge in NginxProxyManager 2.11.3 allows ...

CVE-2024-46256 β€” Jc21 β€” Nginx Proxy Manager β€” CRITICAL β€” CVSS 9.8 | CVEbaza.pl