Описание
In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary OS commands via shell metacharacters in the id parameter to schedulereport.php, in the context of the web-server user account.
In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary OS commands via shell metacharacters in the id parameter to schedulereport.php, in the context of the web-server user account.
EPSS
Процентиль: 97%
0.43613
Средний
CVE ID
Связанные уязвимости
CVSS3: 8.8
nvd
около 6 лет назад
In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary OS commands via shell metacharacters in the id parameter to schedulereport.php, in the context of the web-server user account.
EPSS
Процентиль: 97%
0.43613
Средний