CVE-2017-15651
MEDIUMPRTG Network Monitor 17.3.33.2830 - Authenticated Remote Code Execution via .exe File Upload
Title source: llmDescription
PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://medium.com/stolabs/security-issue-on-prtg-network-manager-ada65b45d37b
Scores
CVSS v3
6.7
EPSS
0.0132
EPSS Percentile
67.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (1)
paessler/prtg_network_monitor
17.3.33.2830
Published
Oct 20, 2017
Tracked Since
Feb 18, 2026