CyberSec.Space Logo
Back to CVE Browser

CVE-2018-4031

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0380%
EPSS Percentile4.59th
PublishedOct 31, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the way the safe browsing function parses HTTP requests. The server hostname is extracted from captured HTTP/HTTPS requests and inserted as part of a Lua statement without prior sanitization, which results in arbitrary Lua script execution in the kernel. An attacker could send an HTTP request to exploit this vulnerability.

Affected Platforms (CPE)

📦
Getcujo

Smart Firewall

= 7003

References & Advisories

🔗 https://talosintelligence.com/vulnerability_reports/TALOS-2018-0703
🔗 https://talosintelligence.com/vulnerability_reports/TALOS-2018-0703

Related Vulnerabilities

CVE-2018-40039.8

An exploitable heap overflow vulnerability exists in the mdnscap binary of the CUJO Smart Firewall running firmware 7003. The stri...

CVE-2018-39859.8

An exploitable double free vulnerability exists in the mdnscap binary of the CUJO Smart Firewall. When parsing mDNS packets, a mem...

CVE-2017-122778.8

A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Fire...

CVE-2018-39638.0

An exploitable command injection vulnerability exists in the DHCP daemon configuration of the CUJO Smart Firewall. When adding a n...