216.73.216.170

CVE-2023-49565

· Published 18/09/2025 06:15 · Modified 18/09/2025 18:15

Labels: CVE-2023-49565 2025-09-18CVE-2023-49565CWE-77b48c3b8f-639e-4c16-8725-497bc411dad0

Essential information

Published
18/09/2025 06:15
Modified
18/09/2025 18:15
Author
Creator
CVSS
8.4 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVSS metrics

Description

The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins endpoint. Improper sanitization of the HTTP Headers X-FILENAME, X-PAGE, and X-FIELD allows for command injection. These headers are directly utilized within the subprocess.Popen Python function without adequate validation, enabling a remote attacker to execute arbitrary commands on the underlying system by crafting malicious header values within an HTTP request to the affected endpoint. The web service executes with root privileges within the container environment, the demonstrated remote code execution permits an attacker to acquire elevated privileges for the command execution. Restricting access to the management network with an external firewall can partially mitigate this risk.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
b48c3b8f-639e-4c16-8725-497bc411dad0
NVD
View on NVD

Affected products (CPE)

ProductCPE
cbis manager / podman cpe:2.3:a:cbis_manager:podman:*:*:*:*:*:*:*:*

References