CVE-2019-1000018

CVE-2019-1000018

Name

CVE-2019-1000018

Description

rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Exploit	https://esnet-security.github.io/vulnerabilities/20190115_rssh
Third Party Advisory	https://www.debian.org/security/2019/dsa-4377
Mailing List	https://lists.debian.org/debian-lts-announce/2019/01/msg00027.html
Third Party Advisory	https://usn.ubuntu.com/3946-1/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/
Third Party Advisory	https://security.gentoo.org/glsa/202007-29
Mailing List	http://seclists.org/fulldisclosure/2021/May/78
cve@mitre.org	https://github.com/WlX-33/PoC-for-CVE/blob/main/CVE-2021-33216%2CCVE-2019-1000018/CommScope%20Ruckus%20IoT%20Controller%201.7.1.0%20Undocumented%20Account.txt
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/

Type

URI

Exploit

https://esnet-security.github.io/vulnerabilities/20190115_rssh

Third Party Advisory

https://www.debian.org/security/2019/dsa-4377

Mailing List

https://lists.debian.org/debian-lts-announce/2019/01/msg00027.html

Third Party Advisory

https://usn.ubuntu.com/3946-1/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/

Third Party Advisory

https://security.gentoo.org/glsa/202007-29

Mailing List

http://seclists.org/fulldisclosure/2021/May/78

cve@mitre.org

https://github.com/WlX-33/PoC-for-CVE/blob/main/CVE-2021-33216%2CCVE-2019-1000018/CommScope%20Ruckus%20IoT%20Controller%201.7.1.0%20Undocumented%20Account.txt

af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/

af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/

af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:pizzashack:rssh:2.3.4:::::::*`	rssh	== None	== 2.3.4

CPE URI

Source package

Min version

Max version

cpe:2.3:a:pizzashack:rssh:2.3.4:*:*:*:*:*:*:*

rssh

== None

== 2.3.4

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
rssh	3.14-main	2.3.4-r2	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.13-main	2.3.4-r2	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.15-main	2.3.4-r2	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.16-main	2.3.4-r2	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.17-main	2.3.4-r3	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	edge-main	2.3.4-r4	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.18-main	2.3.4-r4	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.19-main	2.3.4-r4	Jakub Jirutka <jakub@jirutka.cz>	fixed
rssh	3.20-main	2.3.4-r4	Jakub Jirutka <jakub@jirutka.cz>	fixed

Source package

Branch

Version

Maintainer

Status

rssh

3.14-main

2.3.4-r2

Jakub Jirutka <jakub@jirutka.cz>

fixed

rssh

3.13-main