CVE-2023-26035 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2023-26035

CVE-2023-26035

February 25, 2023

ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 are vulnerable to Unauthenticated Remote Code Execution via Missing Authorization. There are no permissions check on the snapshot action, which expects an id to fetch an existing monitor but can be passed an object to create a new one instead. TriggerOn ends up calling shell_exec using the supplied Id. This issue is fixed in This issue is fixed in versions 1.36.33 and 1.37.33.

Related Resources (5)

https://nvd.nist.gov/vuln/detail/CVE-2023-26035

http://packetstormsecurity.com/files/175675/ZoneMinder-Snapshots-Command-Injection.html

https://security-tracker.debian.org/tracker/CVE-2023-26035

https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/26xxx/CVE-2023-26035.json

https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-72rg-h4vf-29gr

Do you need more information?

CVSS v4

Base Score:

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

LOW

Vulnerable System Availability

NONE

Subsequent System Confidentiality

LOW

Subsequent System Integrity

LOW

Subsequent System Availability

NONE

CVSS v3

Base Score:

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Weakness Type (CWE)

Missing Authorization

CWE-862

EPSS

Base Score:

55.72

Products

Solutions

Resources

Company

Compare

Developer Tools