Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-q3w4-ejd5-pqfz
Vulnerability ID VCID-q3w4-ejd5-pqfz
Aliases CVE-2017-9822
GHSA-x2rg-fmcv-crq5
Summary DNN (aka DotNetNuke) before 9.1.1 has Remote Code Execution via a cookie, aka "2017-08 (Critical) Possible remote code execution on DNN sites."
Status Published
Exploitability 2.0
Weighted Severity 8.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-20 Improper Input Validation
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
cvssv3.1 8.8 http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
generic_textual HIGH http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
ssvc Attend http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
epss 0.94293 https://api.first.org/data/v1/epss?cve=CVE-2017-9822
cvssv3.1 8.8 https://github.com/advisories/GHSA-x2rg-fmcv-crq5
cvssv3.1_qr HIGH https://github.com/advisories/GHSA-x2rg-fmcv-crq5
generic_textual HIGH https://github.com/advisories/GHSA-x2rg-fmcv-crq5
cvssv3.1 8.8 https://nvd.nist.gov/vuln/detail/CVE-2017-9822
generic_textual HIGH https://nvd.nist.gov/vuln/detail/CVE-2017-9822
cvssv3.1 8.8 http://www.dnnsoftware.com/community/security/security-center
generic_textual HIGH http://www.dnnsoftware.com/community/security/security-center
ssvc Attend http://www.dnnsoftware.com/community/security/security-center
cvssv3.1 8.8 http://www.securityfocus.com/bid/102213
generic_textual HIGH http://www.securityfocus.com/bid/102213
ssvc Attend http://www.securityfocus.com/bid/102213
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2017-9822
102213 http://www.securityfocus.com/bid/102213
CVE-2017-9822 https://nvd.nist.gov/vuln/detail/CVE-2017-9822
CVE-2018-18326;CVE-2018-18325;CVE-2018-15812;CVE-2018-15811;CVE-2017-9822 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/48336.rb
CVE-2018-18326;CVE-2018-18325;CVE-2018-15812;CVE-2018-15811;CVE-2017-9822 Exploit https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/http/dnn_cookie_deserialization_rce.rb
DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
GHSA-x2rg-fmcv-crq5 https://github.com/advisories/GHSA-x2rg-fmcv-crq5
security-center http://www.dnnsoftware.com/community/security/security-center
Data source KEV
Date added Nov. 3, 2021
Description DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization.
Required action Apply updates per vendor instructions.
Due date May 3, 2022
Note 
https://nvd.nist.gov/vuln/detail/CVE-2017-9822
Ransomware campaign use Known
Data source Exploit-DB
Date added April 16, 2020
Description DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
Ransomware campaign use Known
Source publication date April 16, 2020
Exploit type remote
Platform windows
Source update date April 16, 2020
Source URL https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/http/dnn_cookie_deserialization_rce.rb
Data source Metasploit
Description This module exploits a deserialization vulnerability in DotNetNuke (DNN) versions 5.0.0 to 9.3.0-RC. Vulnerable versions store profile information for users in the DNNPersonalization cookie as XML. The expected structure includes a "type" attribute to instruct the server which type of object to create on deserialization. The cookie is processed by the application whenever it attempts to load the current user's profile data. This occurs when DNN is configured to handle 404 errors with its built-in error page (default configuration). An attacker can leverage this vulnerability to execute arbitrary code on the system.
Note 
Stability:
  - crash-safe
Reliability:
  - repeatable-session
SideEffects: []
Ransomware campaign use Unknown
Source publication date July 20, 2017
Platform Windows
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/http/dnn_cookie_deserialization_rce.rb
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-07T13:41:35Z/ Found at http://packetstormsecurity.com/files/157080/DotNetNuke-Cookie-Deserialization-Remote-Code-Execution.html
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://github.com/advisories/GHSA-x2rg-fmcv-crq5
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-9822
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at http://www.dnnsoftware.com/community/security/security-center
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-07T13:41:35Z/ Found at http://www.dnnsoftware.com/community/security/security-center
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at http://www.securityfocus.com/bid/102213
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-07T13:41:35Z/ Found at http://www.securityfocus.com/bid/102213
Exploit Prediction Scoring System (EPSS)
Percentile 0.99946
EPSS Score 0.94293
Published At June 13, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-11T16:55:01.303546+00:00 Vulnrichment Import https://github.com/cisagov/vulnrichment/blob/develop/2017/9xxx/CVE-2017-9822.json 38.6.0