CVE-2019-12585
published 2019-06-03CVE-2019-12585: Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php.
PriorityP357critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
5.03%
91.2th percentile
Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apcupsd | apcupsd | — | — |
| debian | apcupsd | — | — |
| netgate | pfsense | < 2.4.4 | 2.4.4 |
| netgate | pfsense | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Arbitrary Command Execution vulnerability exists in apcupsd_status.php as used in pfSense through 2.4.4-RELEASE-p3; monitor for suspicious process spawning from this PHP file or unexpected shell commands originating from the apcupsd web interface. ↗
- ·Vulnerability is scoped as local exploitation, limiting remote attack surface but still relevant for post-auth or local privilege escalation scenarios. ↗
- ·Affected version is Apcupsd 0.3.91_5 as packaged in pfSense through 2.4.4-RELEASE-p3; patched versions exist in Debian bookworm, bullseye, forky, sid, and trixie. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_debian9.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2019-12585: apcupsd - Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products...
vendor_debian·2019·CVSS 9.8
CVE-2019-12585 [CRITICAL] CVE-2019-12585: apcupsd - Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products...
Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-h8cj-r9q8-q267: Apcupsd 0
ghsa_unreviewed·2022-05-24
CVE-2019-12585 [CRITICAL] CWE-78 GHSA-h8cj-r9q8-q267: Apcupsd 0
Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://ctrsec.io/index.php/2019/05/28/cve-2019-12584-12585-command-injection-vulnerability-on-pfsense-2-4-4-release-p3/https://github.com/pfsense/FreeBSD-ports/commit/b492c0ea47aba8dde2f14183e71498ba207594e3https://redmine.pfsense.org/issues/9556https://ctrsec.io/index.php/2019/05/28/cve-2019-12584-12585-command-injection-vulnerability-on-pfsense-2-4-4-release-p3/https://github.com/pfsense/FreeBSD-ports/commit/b492c0ea47aba8dde2f14183e71498ba207594e3https://redmine.pfsense.org/issues/9556
2019-06-03
Published