cbcvebase.
CVE-2024-22198
published 2024-01-11

CVE-2024-22198: Nginx-UI is a web interface to manage Nginx configurations. It is vulnerable to arbitrary command execution by abusing the configuration settings. The `Home >…

PriorityP265high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
4.09%
89.5th percentile
Nginx-UI is a web interface to manage Nginx configurations. It is vulnerable to arbitrary command execution by abusing the configuration settings. The `Home > Preference` page exposes a list of system settings such as `Run Mode`, `Jwt Secret`, `Node Secret` and `Terminal Start Command`. While the UI doesn't allow users to modify the `Terminal Start Command` setting, it is possible to do so by sending a request to the API. This issue may lead to authenticated remote code execution, privilege escalation, and information disclosure. This vulnerability has been patched in version 2.0.0.beta.9.

Affected

5 ranges
VendorProductVersion rangeFixed in
0xjackynginx-ui< 2.0.0.beta.92.0.0.beta.9
github.com0xjacky_nginx-ui>= 0 < 2.0.0.beta.92.0.0.beta.9
github.com0xjacky_nginx-ui>= 0 < 1.9.10-0.20231219184941-827e76c46e631.9.10-0.20231219184941-827e76c46e63
nginxuinginx_ui< 2.0.02.0.0
nginxuinginx_ui
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.