CVE-2019-7276

CRITICAL EXPLOITED IN THE WILD NUCLEI

Optergy Proton/Enterprise - RCE

Title source: llm

Description

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.

Exploits (2)

exploitdb WORKING POC
by LiquidWorm · pythonwebappshardware
https://www.exploit-db.com/exploits/47641
metasploit WORKING POC EXCELLENT
rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/optergy_bms_backdoor_rce_cve_2019_7276.rb

Nuclei Templates (1)

Optergy Proton/Enterprise - Unauthenticated RCE via Backdoor Console
CRITICALby daffainfo
Shodan: html:"Optergy"

References (4)

Scores

CVSS v3 9.8
EPSS 0.9230
EPSS Percentile 99.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2020-10-14
InTheWild.io 2021-10-14
Status published
Products (2)
optergy/enterprise < 2.3.0a
optergy/proton < 2.3.0a
Published Jul 01, 2019
Tracked Since Feb 18, 2026