What is CVE-2024-52010?

CVE-2024-52010 is a vulnerability in Tobychui Zoraxy, classified under OS Command Injection. Published 2024-11-12.

Is CVE-2024-52010 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Tobychui Zoraxy

CVE-2024-52010

Zoraxy is a general purpose HTTP reverse proxy and forwarding tool. A command injection vulnerability in the Web SSH feature allows an authenticated attacker to execute arbitrary commands as root on the host. Zoraxy has a Web SSH terminal…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.009 (76.1th percentile) — read the EPSS interpretation.

Affected products

Tobychui Zoraxy — versions >= 2.6.1, < 3.1.3

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

References

https://github.com/tobychui/zoraxy/security/advisories/GHSA-7hpf-g48v-hw3j (x_refsource_CONFIRM)
https://github.com/tobychui/zoraxy/commit/2e9bc77a5d832bff1093058d42ce7a61382e4bc6 (x_refsource_MISC)
https://github.com/tobychui/zoraxy/commit/c07d5f85dfc37bd32819358ed7d4bc32c604e8f0 (x_refsource_MISC)

Frequently asked questions

What is CVE-2024-52010?: CVE-2024-52010 is a vulnerability in Tobychui Zoraxy, classified under OS Command Injection. Published 2024-11-12.
Is CVE-2024-52010 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.