CVE-2014-125124

UNKNOWN 0.0

Pandora FMS <= 5.0RC1 Anyterm Unauthenticated Command Injection

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An unauthenticated remote command execution vulnerability exists in Pandora FMS versions up to and including 5.0RC1 via the Anyterm web interface, which listens on TCP port 8023. The anyterm-module endpoint accepts unsanitized user input via the p parameter and directly injects it into a shell command, allowing arbitrary command execution as the pandora user. In certain versions (notably 4.1 and 5.0RC1), the pandora user can elevate privileges to root without a password using a chain involving the artica user account. This account is typically installed without a password and is configured to run sudo without authentication. Therefore, full system compromise is possible without any credentials.

CWE	CWE-78 CWE-306
Vendor	artica st
Product	pandora fms
Published	Jul 31, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for artica st pandora fms

Be the first to know when new unknown vulnerabilities affecting artica st pandora fms are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Artica ST / Pandora FMS

* ≤ 5.0RC1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

raw.githubusercontent.com: https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/http/pandora_fms_exec.rb exploit-db.com: https://www.exploit-db.com/exploits/31518 vulncheck.com: https://www.vulncheck.com/advisories/pandora-fms-anyterm-unauth-command-injection

Credits

xistence