CVE-2018-6926
published 2018-02-12CVE-2018-6926: In app/Controller/ServersController.php in MISP 2.4.87, a server setting permitted the override of a path variable on certain Red Hed Enterprise Linux and…
PriorityP341high7.2CVSS 3.0
AVNACLPRHUINSUCHIHAH
EPSS
1.67%
73.8th percentile
In app/Controller/ServersController.php in MISP 2.4.87, a server setting permitted the override of a path variable on certain Red Hed Enterprise Linux and CentOS systems (where rh_shell_fix was enabled), and consequently allowed site admins to inject arbitrary OS commands. The impact is limited by the setting being only accessible to the site administrator.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| drupal | drupal_core | — | — |
| misp-project | misp | — | — |
CVSS provenance
nvdv3.07.2HIGHCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
MISP 2.4.87 ServersController.php path os command injection
vuldb·2026-06-23·CVSS 7.2
CVE-2018-6926 [HIGH] MISP 2.4.87 ServersController.php path os command injection
A vulnerability, which was classified as critical, was found in MISP 2.4.87. Affected is an unknown function of the file app/Controller/ServersController.php. The manipulation of the argument path as part of Variable results in os command injection.
This vulnerability was named CVE-2018-6926. The attack may be performed from remote. There is no available exploit.
GHSA
GHSA-j7gq-x7p9-9cgf: In app/Controller/ServersController
ghsa_unreviewed·2022-05-14
CVE-2018-6926 [HIGH] CWE-78 GHSA-j7gq-x7p9-9cgf: In app/Controller/ServersController
In app/Controller/ServersController.php in MISP 2.4.87, a server setting permitted the override of a path variable on certain Red Hed Enterprise Linux and CentOS systems (where rh_shell_fix was enabled), and consequently allowed site admins to inject arbitrary OS commands. The impact is limited by the setting being only accessible to the site administrator.
Drupal
Drupal core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001
vendor_drupal·2018-02-21·CVSS 6.1
CVE-2017-6926 [MEDIUM] Drupal core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001
Title: Drupal core - Critical - Multiple Vulnerabilities - SA-CORE-2018-001
Vulnerability Type: Multiple Vulnerabilities
Description: This security advisory fixes multiple vulnerabilities in both Drupal 7 and Drupal 8. See below for a list. Comment reply form allows access to restricted content - Critical - Drupal 8 - CVE-2017-6926 Users with permission to post comments are able to view content and comments they do not have access to, and are also able to add comments to this content. This vulnerability is mitigated by the fact that the comment system must be enabled and the attacker must have permission to post comments. JavaScript cross-site scripting prevention is incomplete - Critical - Drupal 7 and Drupal 8 - CVE-2017-6927 Drupal has a Drupal.checkPlain() JavaScript function which i
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-02-12
Published