CVE-2019-19585

HIGH

rConfig 3.9.3 - Privilege Escalation

Title source: llm

Description

An issue was discovered in rConfig 3.9.3. The install script updates the /etc/sudoers file for rconfig specific tasks. After an "rConfig specific Apache configuration" update, apache has high privileges for some binaries. This can be exploited by an attacker to bypass local security restrictions.

Exploits (1)

metasploit WORKING POC GOOD

by Jean-Pascal Thomas, Orange Cyberdefense · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/rconfig_ajaxarchivefiles_rce.rb

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/156950/rConfig-3.9.4-searchField-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://github.com/v1k1ngfr/exploits-rconfig/blob/master/rconfig_lpe.sh

View Exploit ZIP pw:eip

[Exploit, Third Party Advisory] https://raw.githubusercontent.com/v1k1ngfr/exploits/master/rconfig_lpe.sh?token=

Scores

CVSS v3 7.8

EPSS 0.0019

EPSS Percentile 41.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

rconfig/rconfig 3.9.3

Published Jan 06, 2020

Tracked Since Feb 18, 2026