CVE-2017-9822

CWE-94Code Injection13 documents12 sources
8.8
CVSS
HIGH
EPSS94.3%(100th)
CISA KEVPublic ExploitExploited in WildRansomware Use
CISA Required Action: Apply updates per vendor instructions.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NuGetDotNetNuke.Core< 9.1.1
DNN (aka DotNetNuke) before 9.1.1 has Remote Code Execution via a cookie, aka "2017-08 (Critical) Possible remote code execution on DNN sites."
NVDMITRE

🔴Vulnerability Details

4
ghsa
DNN (aka DotNetNuke) has Remote Code Execution via a cookie2018-10-16
OSV
DNN (aka DotNetNuke) has Remote Code Execution via a cookie2018-10-16
cvelistv5
CVE-2017-9822: DNN (aka DotNetNuke) before 92017-07-20
VulnCheck
DotNetNuke (DNN) Remote Code Execution Vulnerability2017

💥Exploits & PoCs

2
Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)2020-04-16
Nuclei
DotNetNuke 5.0.0 - 9.3.0 - Cookie Deserialization Remote Code Execution

🔍Detection Rules

2
Suricata
ET EXPLOIT DotNetNuke 9.2-9.2.2 Cookie Deserialization Exploit (CVE-2018-15811)2021-11-01
Suricata
ET WEB_SPECIFIC_APPS DNN DNNPersonalization Cookie RCE Attempt (CVE-2017-9822)2018-04-27

📋Vendor Advisories

1
CISA
DotNetNuke (DNN) Remote Code Execution Vulnerability2021-11-03

📄Research Papers

1
Wikipedia
Zealot Campaign

💬Community

2
HackerOne
CVE-2017-9822 DotNetNuke Cookie Deserialization Remote Code Execution (RCE) on lonidoor.mtn.ci2024-11-16
BugTraq
[SECURITY] [DSA 3833-1] libav security update2017-04-24
CVE-2017-9822 (HIGH CVSS 8.8) | DNN (aka DotNetNuke) before 9.1.1 h | cvebase