CVE advisoryKnown Exploit
CVE-2019-15107
Webmin Command Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in Webmin's password change feature allows for command injection, enabling unauthorized command execution on affected systems. This presents a significant risk of system compromise and data breaches. Organizations should identify and secure all Webmin assets.