CVE-2013-3632

HIGH

Openmediavault - Access Control

Title source: rule

Description

The Cron service in rpc.php in OpenMediaVault allows remote authenticated users to execute cron jobs as arbitrary users and execute arbitrary commands via the username parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/29323

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/openmediavault_auth_cron_rce.rb

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://osvdb.org/99143

[Exploit] http://www.exploit-db.com/exploits/29323

[Exploit] https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/62873

[Exploit, Third Party Advisory] https://packetstormsecurity.com/files/179859

[Third Party Advisory] https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-foss-disclosures-part-one

Scores

CVSS v3 8.8

EPSS 0.7891

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-264

Status published

Products (1)

openmediavault/openmediavault

Published Sep 29, 2014

Tracked Since Feb 18, 2026