Описание
A path traversal vulnerability exists in Nagios XI below version 5.8.5 AutoDiscovery component and could lead to post authenticated RCE under security context of the user running Nagios.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Release NotesVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.8.5 (исключая)
cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.82596
Высокий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
A path traversal vulnerability exists in Nagios XI below version 5.8.5 AutoDiscovery component and could lead to post authenticated RCE under security context of the user running Nagios.
EPSS
Процентиль: 99%
0.82596
Высокий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-22