Описание
Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
Ссылки
- Release NotesVendor Advisory
- ExploitTechnical DescriptionThird Party Advisory
- Third Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- ExploitTechnical DescriptionThird Party Advisory
- Third Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 5.2.0 (включая) до 5.4.13 (исключая)
cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.72459
Высокий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 8 лет назад
Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
CVSS3: 8.8
github
больше 3 лет назад
Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
EPSS
Процентиль: 99%
0.72459
Высокий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-78