2 matches found
CVE-2019-9166
Nagios XI before 5.5.11 is affected by CVE-2019-9166, a local privilege-escalation vulnerability. The underlying issue allows an attacker with local access to write to config.inc.php and import_xiconfig.php to elevate to root. Public write-up and advisories (CNVD/PRION/CVELIST, PT-Security, Packe...
Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)
A command Injection over HTTP vulnerability has been reported. A remote attacker can exploit this issue by sending a specially crafted request to the victim. Successful exploitation would allow an attacker to execute arbitrary code on the target machine...