CVE-2025-30007

HestiaCP · HestiaCP

HestiaCP is vulnerable to an authenticated OS command injection flaw during DNS record management, allowing attackers to execute arbitrary system commands.

Executive summary

An authenticated OS command injection vulnerability in HestiaCP poses a high risk of total system compromise for affected control panel installations.

Vulnerability

The application fails to properly neutralize special elements in DNS record management, leading to OS command injection. This vulnerability requires the attacker to have at least low-level authenticated access to the control panel to trigger the flaw.

Business impact

The CVSS score of 8.8 reflects the high potential for full system control. Successful exploitation allows an authenticated user to execute arbitrary commands with the privileges of the web application, leading to data exfiltration, service disruption, and potential lateral movement within the hosting environment.

Remediation

Immediate Action: Upgrade HestiaCP to version 1.9.5 or later immediately to apply the necessary input sanitization patches.

Proactive Monitoring: Review web server and system audit logs for suspicious process execution patterns or unexpected shell commands originating from the HestiaCP user context.

Compensating Controls: Implement strict network segmentation and egress filtering to limit the impact if a command injection is successfully executed.

Exploitation status

Public Exploit Available: false

Analyst recommendation

Given the ability for an authenticated user to gain full command execution, this vulnerability represents a severe threat to server integrity. Administrators should prioritize the update to version 1.9.5 to eliminate this injection vector immediately.