CVE-2018-9022

CRITICAL

Broadcom Privileged Access Manager < 2.8.2 - Unauthenticated Remote Code Execution via Configuration File Poisoning

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-9022. PoCs published by Peter Lapp.

AI-analyzed exploit summary This exploit leverages CVE-2018-9022 to achieve remote command execution on Broadcom CA Privileged Access Manager 2.8.2 by injecting commands via the AD_IMPORT parameter and manipulating the MySQL database. It restores the original database value after execution to avoid detection.

Description

An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitrary code or commands by poisoning a configuration file.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Peter Lapp · pythonwebappswindows
https://www.exploit-db.com/exploits/47748

This exploit leverages CVE-2018-9022 to achieve remote command execution on Broadcom CA Privileged Access Manager 2.8.2 by injecting commands via the AD_IMPORT parameter and manipulating the MySQL database. It restores the original database value after execution to avoid detection.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Broadcom CA Privileged Access Manager 2.8.2
No auth needed
Prerequisites: Network access to the target · Target running vulnerable version of Broadcom CA Privileged Access Manager
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 9.8
EPSS 0.2039
EPSS Percentile 97.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-269
Status published
Products (1)
broadcom/privileged_access_manager < 2.8.2
Published Jun 18, 2018
Tracked Since Feb 18, 2026