CVE-2023-0830

MEDIUM

EasyNAS 1.1.0 - OS Command Injection via /backup.pl

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2023-0830. PoCs published by Ivan Spiridonov, xbz0n.

AI-analyzed exploit summary This exploit leverages an OS command injection vulnerability in EasyNas 1.1.0 via the backup.pl endpoint. It authenticates, then injects a base64-encoded reverse shell payload into the 'name' parameter, triggering remote code execution.

Description

A vulnerability classified as critical has been found in EasyNAS 1.1.0. Affected is the function system of the file /backup.pl. The manipulation leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component.

Exploits (2)

exploitdb WORKING POC

by Ivan Spiridonov · pythonremotehardware

https://www.exploit-db.com/exploits/51266

View Code ZIP pw:eip

This exploit leverages an OS command injection vulnerability in EasyNas 1.1.0 via the backup.pl endpoint. It authenticates, then injects a base64-encoded reverse shell payload into the 'name' parameter, triggering remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: EasyNas 1.1.0

Auth required

Prerequisites: Valid credentials for EasyNas · Network access to the target · Listener setup for reverse shell

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1078 - Valid Accounts T1133 - External Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by xbz0n · poc

https://github.com/xbz0n/CVE-2023-0830

View Code ZIP pw:eip

This is a functional exploit for CVE-2023-0830, targeting a command injection vulnerability in EasyNAS. It includes authentication, command execution via base64-encoded payloads, and an integrated reverse shell listener.