Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:95F003C2-CC46-4A30-A9B8-806130B820A0
HistoryNov 14, 2018 - 12:00 a.m.

Nagios XI RCE via Snoopy Library

2018-11-1400:00:00
attackerkb.com
15

EPSS

0.431

Percentile

97.4%

JSON

Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands via a crafted HTTP request.

Recent assessments:

space-r7 at June 28, 2019 3:23pm UTC reported:

If this vulnerability is found in the wild, then it’s likely that the target is vulnerable to CVE-2018-15710 as well. An attacker can get unauthenticated root access to a target given that it is vulnerable to both vulnerabilities, which means it is incredibly important to get this patched. A module now exists for this vulnerability, which further eases the process of exploitation.

Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 4

Related

exploitdb 2
metasploit 1
zdt 2
exploitpack 1
packetstorm 2
checkpoint_advisories 2
prion 2
cve 2
cvelist 2
nvd 2
openvas 1
exploitdb
exploitdb
Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit)
2019-06-26 00:00:00
Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation
2019-01-23 00:00:00
metasploit
metasploit
Nagios XI Magpie_debug.php Root Remote Code Execution
2019-06-25 21:10:44
zdt
zdt
Nagios XI Magpie_debug.php Root Remote Code Execution Exploit
2019-06-26 00:00:00
Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation Exploit
2019-01-23 00:00:00
exploitpack
exploitpack
Nagios XI 5.5.6 - Remote Code Execution Privilege Escalation
2019-01-23 00:00:00
packetstorm
packetstorm
Nagios XI Magpie_debug.php Root Remote Code Execution
2019-06-25 00:00:00
Nagios XI 5.5.6 Remote Code Execution / Privilege Escalation
2019-01-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Nagios XI Magpie cURL Argument Injection (CVE-2018-15708)
2019-02-18 00:00:00
Nagios XI Cmdsubsys Command Injection (CVE-2018-15709; CVE-2018-15710)
2019-02-20 00:00:00
prion
prion
Cross site request forgery (csrf)
2018-11-14 18:29:00
Code injection
2018-11-14 18:29:00
cve
cve
CVE-2018-15708
2018-11-14 18:29:00
CVE-2018-15710
2018-11-14 18:29:00
cvelist
cvelist
CVE-2018-15708
2018-11-14 18:00:00
CVE-2018-15710
2018-11-14 18:00:00
nvd
nvd
CVE-2018-15708
2018-11-14 18:29:00
CVE-2018-15710
2018-11-14 18:29:00
openvas
openvas
Nagios XI < 5.5.7 Multiple Vulnerabilities
2018-11-15 00:00:00

EPSS

0.431

Percentile

97.4%

JSON
Related for AKB:95F003C2-CC46-4A30-A9B8-806130B820A0
exploitdb2metasploit1zdt2exploitpack1packetstorm2checkpoint_advisories2prion2cve2cvelist2nvd2openvas1