Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-15949
HistorySep 05, 2019 - 4:50 p.m.

CVE-2019-15949

2019-09-0516:50:38
mitre
www.cve.org

9 High

AI Score

Confidence

High

0.442 Medium

EPSS

Percentile

97.4%

JSON

Nagios XI before 5.6.6 allows remote command execution as root. The exploit requires access to the server as the nagios user, or access as the admin user via the web interface. The getprofile.sh script, invoked by downloading a system profile (profile.php?cmd=download), is executed as root via a passwordless sudo entry; the script executes check_plugin, which is owned by the nagios user. A user logged into Nagios XI with permissions to modify plugins, or the nagios user on the server, can modify the check_plugin executable and insert malicious commands to execute as root.

Related

packetstorm 2
checkpoint_advisories 1
cisa_kev 1
prion 1
cve 1
attackerkb 1
zdt 1
nessus 1
nvd 1
packetstorm
packetstorm
Nagios XI Authenticated Remote Command Execution
2020-03-10 00:00:00
Nagios XI getprofile.sh Remote Command Execution
2021-04-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Nagios XI Remote Code Execution (CVE-2019-15949)
2021-05-12 00:00:00
cisa_kev
cisa_kev
Nagios XI Remote Code Execution Vulnerability
2021-11-03 00:00:00
prion
prion
Command injection
2019-09-05 17:15:00
cve
cve
CVE-2019-15949
2019-09-05 17:15:12
attackerkb
attackerkb
CVE-2019-15949
2019-09-05 00:00:00
zdt
zdt
Nagios XI getprofile.sh Remote Command Execution Exploit
2021-04-14 00:00:00
nessus
nessus
Nagios XI < 5.6.6 RCE
2021-11-05 00:00:00
nvd
nvd
CVE-2019-15949
2019-09-05 17:15:12

9 High

AI Score

Confidence

High

0.442 Medium

EPSS

Percentile

97.4%

JSON
Related for CVELIST:CVE-2019-15949
packetstorm2checkpoint_advisories1cisa_kev1prion1cve1attackerkb1zdt1nessus1nvd1