CVE-2021-29004 — HIGH (8.8)

Vulnerability Description

rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an attacker may successfully upload a webshell to the server and access it remotely.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Rconfig	Rconfig	3.9.6

Related Weaknesses (CWE)

CWE-89

References

http://rconfig.comVendor Advisory
https://github.com/mrojz/rconfig-exploit/blob/main/CVE-2021-29004-POC-req.txtThird Party Advisory
https://github.com/mrojz/rconfig-exploit/blob/main/README.mdThird Party Advisory
https://rconfig.comVendor Advisory
http://rconfig.comVendor Advisory
https://github.com/mrojz/rconfig-exploit/blob/main/CVE-2021-29004-POC-req.txtThird Party Advisory
https://github.com/mrojz/rconfig-exploit/blob/main/README.mdThird Party Advisory
https://rconfig.comVendor Advisory

FAQ

What is CVE-2021-29004?

CVE-2021-29004 is a vulnerability with a CVSS score of 8.8 (HIGH). rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an ...

How severe is CVE-2021-29004?

CVE-2021-29004 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-29004?

Check the references section above for vendor advisories and patch information. Affected products include: Rconfig Rconfig.