CVE-2018-7739
Last modified
CVE-2018-7739 is a vulnerability of currently unknown severity. antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=>&password=%0a string to the /login URI. This allows obtaining root permissions within the web management console, because the login process uses Java's ProcessBuilder class and a bash script called antsle-auth with insufficient input validation.. EPSS estimates a 54.56% chance of exploitation in the next 30 days.
Description
antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=>&password=%0a string to the /login URI. This allows obtaining root permissions within the web management console, because the login process uses Java's ProcessBuilder class and a bash script called antsle-auth with insufficient input validation.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Antsle | Antman | <= 0.9.0c |
References
- http://blog.codecatoctin.com/2018/02/antman-authentication-bypass.htmlExploit, Third Party Advisory
- https://www.exploit-db.com/exploits/44220/Exploit, Third Party Advisory, VDB Entry
- https://www.exploit-db.com/exploits/44262/Exploit, Third Party Advisory, VDB Entry
- http://blog.codecatoctin.com/2018/02/antman-authentication-bypass.htmlExploit, Third Party Advisory
- https://www.exploit-db.com/exploits/44220/Exploit, Third Party Advisory, VDB Entry
- https://www.exploit-db.com/exploits/44262/Exploit, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-7739?
How severe is CVE-2018-7739?
How do I fix CVE-2018-7739?
Are you affected by CVE-2018-7739?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST