Main Vulnerability Database Exploits ID:5733 - Exploit for OS Command Injection in ZenLoad Balancer - CVE-2019-7301

ID:5733 - Exploit for OS Command Injection in ZenLoad Balancer - CVE-2019-7301

Published: June 17, 2021

Vulnerability identifier: #VU17356

Vulnerability risk: High

CVE-ID: CVE-2019-7301

CWE-ID: CWE-78

Exploitation vector: Remote access

Vulnerable software:
ZenLoad Balancer

Link to public exploit:

https://www.exploit-db.com/exploits/48266/

Vulnerability description

The vulnerability allows a remote authenticated attacker to execute arbitrary shell commands on the target system.

The vulnerability exists due to insufficient validation of user-supplied input. A remote authenticated attacker can inject arbitrary OS commands via shell metacharacters in the index.cgi?action=View_Cert certname parameter to execute arbitrary code with root privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install updates from vendor's website.

ID:5733 - Exploit for OS Command Injection in ZenLoad Balancer - CVE-2019-7301

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human