COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-44877

CVE-2022-44877

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2023-01-17
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-44877
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.

Players implicated

CWP · vendorControl Web Panel · product

Description

CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.