CVE-2018-25272

CRITICAL

ELBA5 5.8.0 Remote Code Execution via Database Access

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25272. PoCs published by Florian Bogner.

AI-analyzed exploit summary This exploit targets ELBA5 Electronic Banking software up to version 5.8.0, leveraging a hardcoded connector account to decrypt DBA credentials and execute arbitrary commands or add backdoor users via SQL injection. It demonstrates full RCE with SYSTEM privileges on Windows.

Description

ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can connect to the database using default connector credentials, decrypt the DBA password, and execute commands via the xp_cmdshell stored procedure or add backdoor users to the BEDIENER table.

Exploits (1)

exploitdb WORKING POC

by Florian Bogner · pythonremotewindows

https://www.exploit-db.com/exploits/45905

View Code ZIP pw:eip

This exploit targets ELBA5 Electronic Banking software up to version 5.8.0, leveraging a hardcoded connector account to decrypt DBA credentials and execute arbitrary commands or add backdoor users via SQL injection. It demonstrates full RCE with SYSTEM privileges on Windows.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ELBA5 Electronic Banking (up to 5.8.0)

No auth needed

Prerequisites: Network access to ELBA5 server (default port 2640) · sqlanydb Python module

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Apr 22, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-45905

https://www.exploit-db.com/exploits/45905

Product product

Official Product Homepage

https://www.elba.at

Third Party Advisory third-party-advisory

VulnCheck Advisory: ELBA5 5.8.0 Remote Code Execution via Database Access

https://www.vulncheck.com/advisories/elba5-remote-code-execution-via-database-access

Scores

CVSS v3 9.8

EPSS 0.0042

EPSS Percentile 33.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-326

Status published

Products (1)

Elba/ELBA5 5.8.0

Published Apr 22, 2026

Tracked Since Apr 22, 2026