Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.36 views

SUSE SLES12 Security Update : nrpe (SUSE-SU-2024:1417-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1417-1 advisory. CVE-2014-2913: Fixed remote command execution when command arguments are enabled bsc1118590,bsc874743 Tenable has extracted the preceding...

7.5CVSS7.3AI score0.15312EPSS
Exploits6References5
CNVD
CNVD
added 2020/03/17 12:0 a.m.4 views

Nagios NRPE Insufficient Filtering Vulnerability

Nagios NRPE is an extension of Nagios to execute plug-in programs on remote Linux/Unix hosts. An insufficient filtering vulnerability exists in Nagios NRPE 3.2.1. The vulnerability stems from nastymetachars interpreting n as a character and the character n instead of the n newline sequence. An...

7.3CVSS7.8AI score0.01612EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/17 12:0 a.m.4 views

Nagios NRPE Heap Buffer Overflow Vulnerability

Nagios NRPE is an extension of Nagios to execute plug-in programs on remote Linux/Unix hosts. A heap buffer overflow vulnerability exists in Nagios NRPE 3.2.1. An attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS7.5AI score0.03871EPSS
Exploits1References1
OSV
OSV
added 2020/03/16 6:15 p.m.2 views

ALPINE-CVE-2020-6581

Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nastymetachars interprets \n as the character \ and the character n not as the \n newline sequence. This can cause command injection...

7.3CVSS7.2AI score0.01612EPSS
Exploits1References1
OSV
OSV
added 2020/03/16 6:15 p.m.3 views

DEBIAN-CVE-2020-6582

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call...

7.5CVSS7.3AI score0.03871EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/03 12:0 a.m.1 views

SuperMicro SuperDoctor Arbitrary Code Execution Vulnerability

SuperMicro SuperDoctor is a set of server management monitoring platform from SuperMicro, Inc. in the United States. The platform is mainly used for real-time monitoring of the target node hardware in the data center system operation status or availability. A security vulnerability exists in Supe...

9.8CVSS7.6AI score0.03578EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Nagios Remote Plugin Executor Arbitrary Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'zlib' class...

7.1AI score
Exploits0
Amazon
Amazon
added 2014/06/26 12:0 a.m.38 views

Important: nrpe

Issue Overview: DISPUTED Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor NRPE 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/checknrpe. NOTE: this issue is disputed by multiple parties. It ha...

7.5CVSS7.7AI score0.15312EPSS
Exploits6
OSV
OSV
added 2014/05/07 10:55 a.m.1 views

DEBIAN-CVE-2014-2913

Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor NRPE 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/checknrpe. NOTE: this issue is disputed by multiple parties. It has been reported that the...

7.5CVSS7.8AI score0.15312EPSS
Exploits6References1
OSV
OSV
added 2014/05/07 10:55 a.m.1 views

UBUNTU-CVE-2014-2913

DISPUTED Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor NRPE 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/checknrpe. NOTE: this issue is disputed by multiple parties. It has been reported...

7.5CVSS6.1AI score0.15312EPSS
Exploits6References4
Debian CVE
Debian CVE
added 2014/05/07 10:0 a.m.37 views

CVE-2014-2913

Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor NRPE 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/checknrpe. NOTE: this issue is disputed by multiple parties. It has been reported that the...

7.5CVSS7.2AI score0.15312EPSS
Exploits6
CVE
CVE
added 2014/05/07 10:0 a.m.114 views

CVE-2014-2913

CVE-2014-2913 affects Nagios NRPE = 3.2.1-3 or disabling the dont_blame_nrpe option as a workaround. Gentoo GLSA, Mageia MGASA, and various Fedora advisories reference CVE-2014-2913 and advocate upgrading NRPE.Remediation: upgrade NRPE to a non-vulnerable version (examples: Fedora/Mageia/Arch gui...

7.5CVSS7.4AI score0.15312EPSS
Exploits6References9Affected Software2
0day.today
0day.today
added 2014/04/19 12:0 a.m.40 views

Nagios Remote Plugin Executor 2.15 Remote Command Execution

Nagios Remote Plugin Executor NRPE versions 2.15 and below suffer from a remote command execution vulnerability. ============================================= - Release date: 17.04.2014 - Discovered by: Dawid Golunski - Severity: High ============================================= I. VULNERABILITY...

7.4AI score
Exploits0
OSV
OSV
added 2013/07/09 5:55 p.m.2 views

DEBIAN-CVE-2013-1362

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor NRPE before 2.14 might allow remote attackers to execute arbitrary shell commands via "$" shell metacharacters, which are processed by bash...

7.5CVSS7.5AI score0.65724EPSS
Exploits9References1
OSV
OSV
added 2013/07/09 5:55 p.m.2 views

UBUNTU-CVE-2013-1362

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor NRPE before 2.14 might allow remote attackers to execute arbitrary shell commands via "$" shell metacharacters, which are processed by bash...

7.5CVSS6.2AI score0.65724EPSS
Exploits9References2
Exploit DB
Exploit DB
added 2013/04/12 12:0 a.m.46 views

Nagios Remote Plugin Executor - Arbitrary Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'zlib' class Metasploit3 'Nagios Remote Plugin...

7.5CVSS6.9AI score0.65724EPSS
Exploits9
0day.today
0day.today
added 2013/04/12 12:0 a.m.90 views

Nagios Remote Plugin Executor Arbitrary Command Execution

The Nagios Remote Plugin Executor NRPE is installed to allow a central Nagios server to actively poll information from the hosts it monitors. NRPE has a configuration option dontblamenrpe which enables command-line arguments to be provided remote plugins. When this option is enabled, even when NR...

7.5CVSS7.1AI score0.65724EPSS
Exploits9
Metasploit
Metasploit
added 2013/03/19 8:43 a.m.36 views

Nagios Remote Plugin Executor Arbitrary Command Execution

The Nagios Remote Plugin Executor NRPE is installed to allow a central Nagios server to actively poll information from the hosts it monitors. NRPE has a configuration option dontblamenrpe which enables command-line arguments to be provided remote plugins. When this option is enabled, even when NR...

7.5CVSS0.1AI score0.65724EPSS
Exploits9
OpenVAS
OpenVAS
added 2011/06/01 12:0 a.m.62 views

Nmap NSE net: nrpe-enum

Queries Nagios Remote Plugin Executor NRPE daemons to obtain information such as load averages, process counts, logged in user information, etc. This script attempts to execute the stock list of commands that are enabled. User-supplied arguments are not supported. SYNTAX: nrpe-enum.cmds: A...

0.1AI score
Exploits0
Rows per page
Query Builder