CVE-2018-25272 in ELBA5정보

요약

\~에 의해 MITRE • 2026. 04. 22.

ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can connect to the database using default connector credentials, decrypt the DBA password, and execute commands via the xp_cmdshell stored procedure or add backdoor users to the BEDIENER table.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

VulnCheck

예약하다

2026. 04. 22.

공개

2026. 04. 22.

모더레이션

수락

항목

VDB-358969

CPE

준비됨

CWE

CWE-912 (미확인)

익스플로잇

다운로드

CVSS

9.8 (CNA)

EPSS

0.00111

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-25272
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-25272
CVE Details	https://www.cvedetails.com/cve/CVE-2018-25272/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!