vulnerability
FreeBSD: VID-ece65d3b-c20c-11e9-8af4-bcaec55be5e5 (CVE-2019-15107): webmin -- unauthenticated remote code execution
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Aug 17, 2019 | Aug 19, 2019 | Jun 15, 2026 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Aug 17, 2019
Added
Aug 19, 2019
Modified
Jun 15, 2026
Description
An issue was discovered in Webmin less than or equal to1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
Solutions
freebsd-upgrade-package-webminfreebsd-upgrade-package-usermin
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.