Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2019-15107

Webmin | WebminAdded 2022-03-25Remediation Deadline 2022-04-15Active Ransomware Campaign

Webmin Command Injection Vulnerability

An issue was discovered in Webmin. The parameter old in password_change.cgi contains a command injection vulnerability.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-78

References