CVE-2019-7300

Name of the Vulnerable Software and Affected Versions Artica Proxy version 3.06.200056

Description The issue allows remote attackers to execute arbitrary commands as root. This is achieved by reading the ldap admin and ldap password fields from the ressources/settings.inc file, using these credentials at the "logon.php" endpoint, and then entering the commands in the "admin.index.php" command-line field.

Recommendations For Artica Proxy version 3.06.200056, consider restricting access to the "logon.php" and "admin.index.php" endpoints to minimize the risk of exploitation. Additionally, restrict access to the ressources/settings.inc file to prevent unauthorized reading of the ldap admin and ldap password fields. As a temporary workaround, consider disabling the command-line field in "admin.index.php" until a patch is available.