CVE-2018-9276
Paessler PRTG Network Monitor OS Command Injection Vulnerability
CVSS
—
No CVSS
EPSS
87.2%
p100
KEV
YES
Feb 4, 2025
Exploit Today
80
0-100
Published: — · Last modified: —
Product
Paessler / PRTG Network Monitor
Vulnerability
Paessler PRTG Network Monitor OS Command Injection Vulnerability
Added to KEV
Feb 4, 2025
Remediate by
Feb 25, 2025
Known ransomware use
No
Summary description
Paessler PRTG Network Monitor contains an OS command injection vulnerability that allows an attacker with administrative privileges to execute commands via the PRTG System Administrator web console.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes
https://www.paessler.com/prtg/history/prtg-18#18.2.39 ; https://nvd.nist.gov/vuln/detail/CVE-2018-9276