CVE-2023-6019

CRITICAL LAB

Ray < 2.8.1 - Unauthenticated Remote Code Execution via CPU Profile URL Parameter

Title source: llm

Exploitation Summary

EIP tracks 5 public exploits for CVE-2023-6019. PoCs published by Fire_Wolf, Clydeston, FireWolfWang, including Metasploit module exploits/linux/http/ray_cpu_profile_cmd_injection_cve_2023_6019.

AI-analyzed exploit summary This exploit demonstrates a command injection vulnerability in Ray OS v2.6.3 via the CPU profiling page's 'format' parameter, allowing arbitrary command execution. It uses a base64-encoded reverse shell payload injected into the system command, potentially escalating to root if sudo is passwordless.

Description

A command injection existed in Ray's cpu_profile URL parameter allowing attackers to execute os commands on the system running the ray dashboard remotely without authentication. The issue is fixed in version 2.8.1+. Ray maintainers' response can be found here: https://www.anyscale.com/blog/update-on-ray-cves-cve-2023-6019-cve-2023-6020-cve-2023-6021-cve-2023-48022-cve-2023-48023

Exploits (5)

exploitdb WORKING POC

by Fire_Wolf · textwebappspython

https://www.exploit-db.com/exploits/51978

View Code ZIP pw:eip

This exploit demonstrates a command injection vulnerability in Ray OS v2.6.3 via the CPU profiling page's 'format' parameter, allowing arbitrary command execution. It uses a base64-encoded reverse shell payload injected into the system command, potentially escalating to root if sudo is passwordless.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Ray OS <= 2.6.3

No auth needed

Prerequisites: Network access to the Ray OS dashboard · Python 3 environment · Listener setup for reverse shell

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 1 stars

by Clydeston · poc

https://github.com/Clydeston/CVE-2023-6019

View Code ZIP pw:eip

This PoC exploits a command injection vulnerability in the target software by sending a crafted HTTP request with a base64-encoded reverse shell payload. The payload is executed via the `format` parameter in the CPU profile endpoint.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Unknown (likely a web application with a CPU profiling endpoint)

No auth needed

Prerequisites: Network access to the target · Target service running on specified port · Python 3 environment

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1189 - Drive-by Compromise T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by FireWolfWang · poc

https://github.com/FireWolfWang/CVE-2023-6019

View Code ZIP pw:eip

This is a functional exploit for CVE-2023-6019, targeting a command injection vulnerability in the Ray Project dashboard's CPU profiling page. It leverages an unauthenticated RCE via the 'format' parameter to execute arbitrary commands, potentially escalating to root if sudo is passwordless.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Ray Project dashboard <= 2.6.3

No auth needed

Prerequisites: Network access to the Ray dashboard · Listener setup for reverse shell

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by Zohaibkhan1472 · poc

https://github.com/Zohaibkhan1472/cve-2023-6019

View Code ZIP pw:eip

This repository contains a proof-of-concept for CVE-2023-6019, demonstrating a command injection vulnerability in a Ray monitoring endpoint. The PoC includes a Flask-based dashboard for testing payloads, a WAF filter for mitigation, and a monitoring service that logs suspicious requests.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Ray monitoring service (version not specified)

No auth needed

Prerequisites: Access to the vulnerable endpoint · Ability to send crafted JSON payloads

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by sierrabearchell, byt3bl33d3r <[email protected]>, Takahiro Yokoyama · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/ray_cpu_profile_cmd_injection_cve_2023_6019.rb

View Code ZIP pw:eip

This Metasploit module exploits a command injection vulnerability in Ray's cpu_profile endpoint (CVE-2023-6019) by injecting commands via the 'format' parameter. It supports multiple architectures and uses a cmdstager for payload delivery.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Ray versions 2.2.0 to 2.6.3

No auth needed

Prerequisites: Access to Ray's HTTP API (port 8265 by default) · At least one node available in the Ray cluster

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit

https://huntr.com/bounties/d0290f3c-b302-4161-89f2-c13bb28b4cfe

Scores

CVSS v3 9.8

EPSS 0.8877

EPSS Percentile 99.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull rayproject/ray:2.7.0

https://github.com/FireWolfWang/CVE-2023-6019

https://github.com/Clydeston/CVE-2023-6019

https://github.com/Zohaibkhan1472/cve-2023-6019

+1 more repos

View in Library

Details

CWE

CWE-78

Status published

Products (2)

pypi/ray 0 - 2.8.1PyPI

ray_project/ray

Published Nov 16, 2023

Tracked Since Feb 18, 2026