CVE-2019-15014
published 2019-10-09CVE-2019-15014: A command injection vulnerability exists in the Zingbox Inspector versions 1.286 and earlier, that allows for an authenticated user to execute arbitrary system…
PriorityP258high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
2.29%
81.1th percentile
A command injection vulnerability exists in the Zingbox Inspector versions 1.286 and earlier, that allows for an authenticated user to execute arbitrary system commands in the CLI.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| paloalto | zingbox_inspector | — | — |
| zingbox | inspector | <= 1.286 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is exploitable only by authenticated users via the Zingbox Inspector CLI console; monitor for unexpected or anomalous CLI command execution by authenticated users on Zingbox Inspector devices ↗
- →Affected versions are 1.286 and earlier; presence of these versions in the environment indicates exposure to this command injection vulnerability ↗
- ·Disabling console/CLI access on Zingbox Inspector is a viable workaround if patching to 1.287 is not immediately possible ↗
- ·Zingbox Inspector auto-updates by default; devices that have not auto-updated to 1.287 or later remain vulnerable and should be investigated for connectivity or update mechanism issues ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hfpr-gm4w-ghgf: A command injection vulnerability exists in the Zingbox Inspector versions 1
ghsa_unreviewed·2022-05-24
CVE-2019-15014 [HIGH] CWE-78 GHSA-hfpr-gm4w-ghgf: A command injection vulnerability exists in the Zingbox Inspector versions 1
A command injection vulnerability exists in the Zingbox Inspector versions 1.286 and earlier, that allows for an authenticated user to execute arbitrary system commands in the CLI.
Palo Alto
Command Injection in Zingbox Inspector
vendor_paloalto·2019-10-01·CVSS 8.8
CVE-2019-15014 [HIGH] CWE-74 Command Injection in Zingbox Inspector
Command Injection in Zingbox Inspector
A command injection vulnerability exists in the Zingbox Inspector CLI that allows for an authenticated user to execute arbitrary system commands. (Ref: CVE-2019-15014)
The vulnerability allows for authenticated users to execute arbitrary commands within the product CLI console.
This issue affects Zingbox Inspector, versions 1.286 and earlier.
Affected products: Zingbox Inspector
Solution: Zingbox Inspector, version 1.287 and later.
Workaround: In the normal course of operation, Zingbox Inspector automatically updates its own software, and a fixed version of software has already been made available. No user action is required unless the software is unable to update itself. Customers still running affected versions of Zingbox Inspector software can
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-10-09
Published