Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2022/01/25 12:0 a.m.8 views

Nagios XI Remote Code Execution (CVE-2021-40344)

A remote code execution vulnerability exists in Nagios XI. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.7AI score0.66191EPSS
Exploits1
Circl
Circl
added 2021/10/26 2:14 p.m.5 views

CVE-2021-40344

creationtimestamp| type| source ---|---|--- 2021-10-26 14:14:46+00:00| seen| https://t.me/cibsecurity/31194...

7.2CVSS7AI score0.66191EPSS
Exploits1References1
NVD
NVD
added 2021/10/26 11:15 a.m.21 views

CVE-2021-40344

An issue was discovered in Nagios XI 5.8.5. In the Custom Includes section of the Admin panel, an administrator can upload files with arbitrary extensions as long as the MIME type corresponds to an image. Therefore it is possible to upload a crafted PHP script to achieve remote command execution...

7.2CVSS0.66191EPSS
Exploits1References3
CVE
CVE
added 2021/10/26 10:52 a.m.62 views

CVE-2021-40344

CVE-2021-40344 affects Nagios XI 5.8.5. In the Admin panel’s Custom Includes, an administrator can upload files with arbitrary extensions if the MIME type matches an image, enabling a crafted PHP script upload and remote code execution. The root cause is inadequate validation of uploaded content/...

7.2CVSS7.2AI score0.66191EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/10/26 10:52 a.m.34 views

CVE-2021-40344

An issue was discovered in Nagios XI 5.8.5. In the Custom Includes section of the Admin panel, an administrator can upload files with arbitrary extensions as long as the MIME type corresponds to an image. Therefore it is possible to upload a crafted PHP script to achieve remote command execution...

7.5AI score0.66191EPSS
Exploits1References3
Rows per page
Query Builder