CVE-2018-14417

CRITICAL IN THE WILD

SoftNAS Cloud <4.0.3 - Command Injection

Title source: llm

Exploitation Summary

CVE-2018-14417 has been observed exploited in the wild (reported by InTheWild.io). EIP tracks 1 public exploit from researchers including Core Security.

AI-analyzed exploit summary This exploit demonstrates a command injection vulnerability in SoftNAS Cloud OS via the 'recentVersion' parameter in the snserv endpoint. It allows unauthenticated remote code execution with root privileges due to improper input sanitization and sudo misconfiguration.

Description

A command injection vulnerability was found in the web administration console in SoftNAS Cloud before 4.0.3. In particular, the snserv script did not sanitize the 'recentVersion' parameter from the snserv endpoint, allowing an unauthenticated attacker to execute arbitrary commands with root permissions.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textwebappsphp

https://www.exploit-db.com/exploits/45097

View Code ZIP pw:eip

This exploit demonstrates a command injection vulnerability in SoftNAS Cloud OS via the 'recentVersion' parameter in the snserv endpoint. It allows unauthenticated remote code execution with root privileges due to improper input sanitization and sudo misconfiguration.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: SoftNAS Cloud OS versions prior to 4.0.3

No auth needed

Prerequisites: Network access to the target system · SoftNAS Cloud OS web administration console exposed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/104914

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45097/

Exploit, Third Party Advisory x_refsource_misc

https://www.coresecurity.com/advisories/softnas-cloud-os-command-injection

Vendor Advisory x_refsource_confirm

https://docs.softnas.com/display/SD/Release+Notes

Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2018/Jul/85

Scores

CVSS v3 9.8

EPSS 0.7113

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

InTheWild.io 2018-10-04

CWE

CWE-78

Status published

Products (1)

softnas/cloud < 4.0.3

Published Aug 04, 2018

Tracked Since Feb 18, 2026