All vulnerabilities
CVE-2018-9276
Paessler PRTG Network Monitor OS Command Injection Vulnerability
Paessler — PRTG Network Monitor
- Added to KEV catalog
- 4 February 2025
- Federal remediation due date
- 25 February 2025
- Weakness classification (CWE)
- CWE-78
CISA Description
Paessler PRTG Network Monitor contains an OS command injection vulnerability that allows an attacker with administrative privileges to execute commands via the PRTG System Administrator web console.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes
https://www.paessler.com/prtg/history/prtg-18#18.2.39 ; https://nvd.nist.gov/vuln/detail/CVE-2018-9276
More Paessler Vulnerabilities
Confirm Your Exposure
Is this vulnerability present in your environment?
CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.
Explore VAPT Services