Количество 3
Количество 3
CVE-2023-40934
A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings.
GHSA-93c7-q3jp-mw37
A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings.
BDU:2023-06015
Уязвимость сценария nagiosxi/includes/comComponents/ccm/index.php инструмента для мониторинга Nagios XI, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-40934 A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings. | CVSS3: 7.2 | 1% Низкий | больше 2 лет назад |
| GHSA-93c7-q3jp-mw37 A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings. | CVSS3: 7.2 | 1% Низкий | больше 2 лет назад |
 | BDU:2023-06015 Уязвимость сценария nagiosxi/includes/comComponents/ccm/index.php инструмента для мониторинга Nagios XI, позволяющая нарушителю выполнить произвольный код | CVSS3: 7.2 | 1% Низкий | больше 2 лет назад |
Уязвимостей на страницу