CVE-2018-16716
published 2019-05-02CVE-2018-16716: A path traversal vulnerability exists in viewcgi.c in the 2.0.7 through 2.2.26 legacy versions of the NCBI ToolBox, which may result in reading of arbitrary…
PriorityP264critical9.1CVSS 3.0
AVNACLPRNUINSUCHIHAN
EXPLOIT
EPSS
8.57%
94.4th percentile
A path traversal vulnerability exists in viewcgi.c in the 2.0.7 through 2.2.26 legacy versions of the NCBI ToolBox, which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nih | ncbi_toolbox | 2.0.7 – 2.2.26 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Send a GET request to /blast/nph-viewgif.cgi with a path traversal query string (e.g., ../../../../etc/passwd) and look for a 200 HTTP response containing the pattern root:[x*]:0:0 in the body, indicating successful arbitrary file read.
- →The vulnerability is triggered via the query string of nph-viewgif.cgi; monitor HTTP access logs for requests to this CGI endpoint containing directory traversal sequences (../).
- ·Affected versions are NCBI ToolBox 2.0.7 through 2.2.26 (legacy); detections should be scoped to these version ranges to avoid false positives on patched or unrelated deployments. ↗
CVSS provenance
nvdv3.09.1CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
NCBI ToolBox - Directory Traversal
nuclei·CVSS 9.1
CVE-2018-16716 [CRITICAL] NCBI ToolBox - Directory Traversal
NCBI ToolBox - Directory Traversal
NCBI ToolBox 2.0.7 through 2.2.26 legacy versions contain a path traversal vulnerability via viewcgi.cgi which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
Template:
id: CVE-2018-16716
info:
name: NCBI ToolBox - Directory Traversal
author: 0x_Akoko
severity: critical
description: NCBI ToolBox 2.0.7 through 2.2.26 legacy versions contain a path traversal vulnerability via viewcgi.cgi which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
impact: |
An attacker can view, modify, or delete sensitive files on the server, potentially leading to unauthorized access, data leakag
2019-05-02
Published