module
Optergy Proton and Enterprise BMS Command Injection using a backdoor
| Disclosed |
|---|
| Nov 5, 2019 |
Disclosed
Nov 5, 2019
Description
This module exploits an undocumented backdoor vulnerability in the Optergy Proton and Enterprise
Building Management System (BMS) applications. Versions `2.0.3a` and below are vulnerable.
Attackers can exploit this issue by directly navigating to an undocumented backdoor script
called Console.jsp in the tools directory and gain full system access.
Successful exploitation results in `root` command execution using `sudo` as user `optergy`.
Building Management System (BMS) applications. Versions `2.0.3a` and below are vulnerable.
Attackers can exploit this issue by directly navigating to an undocumented backdoor script
called Console.jsp in the tools directory and gain full system access.
Successful exploitation results in `root` command execution using `sudo` as user `optergy`.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.