Exploit for #VU49671 OS Command Injection in Nagios XI
Vulnerability identifier: #VU49671
Vulnerability risk: Low
CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-78
Exploitation vector: Network
Exploits in database: 4
- May 9, 2021
- Nagios XI Prior to 5.8.0 - Plugins Filename Authenticated Remote Code Exection [Metasploit]
- Nagios XI Scanner [Metasploit]
- April 16, 2021
- Nagios XI Remote Code Execution [Packet Storm]
- January 19, 2021
Impact: Code execution
Vulnerable software:
Nagios XI
Server applications /
Other server solutions
Vendor: nagios.org
