by vicarius
log in join community
by @mhzcyber
26 Jan 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Unauthenticated RCE in Centos Control Web Panel 7 (CWP) - CVE-2022–44877

by @mhzcyber
by @mhzcyber
26 Jan 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Unauthenticated RCE in Centos Control Web Panel 7 (CWP) - CVE-2022–44877

CVEs

CVE-2022-44877
9.8 Critical Severity

Apps

CWP
Centos Web PanelCentos-Webpanel
0.9.8.1147.*
0.9.8.1146.*
0.9.8.1145.*
0.9.8.1144.*
0.9.8.1143.*
0.9.8.1142.*
0.9.8.1141.*
0.9.8.1140.*
0.9.8.1137.*
0.9.8.1127.*
W
WebpanelControl-Webpanel
0.9.8.1147.*
0.9.8.1146.*
0.9.8.1145.*
0.9.8.1144.*
0.9.8.1143.*
0.9.8.1142.*
0.9.8.1141.*
0.9.8.1140.*
0.9.8.1137.*
0.9.8.1127.*

Screenshots from the blog posts

blog-posts/images/cldd2rhfe01680jp8hul01ttb.pngblog-posts/images/cldd2rhfe01680jp8hul01ttb.png

Summary

In this blog, we are going to break down the Centos Web Panel RCE, dive deep into the dynamic and static analysis, also trying to simulate the backend code.

Description

Tags

#RCE#vicarius_blog#CVE-2022-44877#CWP
users/photos/clr6vsmml0vl21hn13643hl0n.jpg

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

badges/images/clemwgql90gww0jnxh6rbcqsr.png

Memelord

badges/images/clktw0fnh0pci1inadxpbcwpn.png

Shawarma King

Social media links

Comments (2)