130 matches found
CVE-2024-14003 Nagios XI < 2024R1.2 RCE via NRDP Server Plugins
Nagios XI versions prior to 2024R1.2 are vulnerable to remote code execution RCE through its NRDP Nagios Remote Data Processor server plugins. Insufficient validation of inbound NRDP request parameters allows crafted input to reach command execution paths, enabling attackers to execute arbitrary...
EUVD-2019-10936
Malware in sbrugna...
EUVD-2014-4622
Malware in sbrugna...
EUVD-2013-4120
Malware in sbrugna...
EUVD-2007-5595
Malware in sbrugna...
ROS-20241015-10
The vulnerability of the checkbyssh.c component of the Nagios-plugins monitoring system plugin set is related to the following failure to take measures to neutralize special elements used in operating system commands. Exploitation of the vulnerability could allow an attacker acting remotely to...
CVE-2023-37154
checkbyssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS. This has been categorized both as fixed in e8810de, and as intended behavior...
CVE-2023-37154
checkbyssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS. This has been categorized both as fixed in e8810de, and as intended behavior...
UBUNTU-CVE-2023-37154
checkbyssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS. This has been categorized both as fixed in e8810de, and as intended behavior...
CVE-2023-37154
checkbyssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS. This has been categorized both as fixed in e8810de, and as intended behavior...
Nagios Plugins 安全漏洞
Nagios Plugins is an open source plugin from the Nagios Plugins Project. A security vulnerability exists in Nagios Plugins version 2.4.5 that originates from allowing arbitrary commands to be executed via ProxyCommand, LocalCommand, and PermitLocalCommand...
The vulnerability of the check_by_ssh.c component in the Nagios-plugins monitoring system allows a hacker to execute arbitrary commands.
The vulnerability of the checkbyssh.c component of the Nagios-plugins monitoring system relates to the lack of measures taken to neutralize special elements used in operating systems’ command lines. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by...
PT-2023-5555 · Nagios +3 · Nagios +3
Name of the Vulnerable Software and Affected Versions: Nagios nagios-plugins version 2.4.5 Description: The issue concerns arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS in the check by ssh component of Nagios nagios-plugins. This allows a remote...
SUSE CVE-2007-5198
Buffer overflow in the redir function in checkhttp.c in Nagios Plugins before 1.4.10, when running with the -f follow option, allows remote web servers to execute arbitrary code via Location header responses redirects with a large number of leading "L" characters...
SUSE CVE-2007-5623
Buffer overflow in the checksnmp function in Nagios Plugins nagios-plugins 1.4.10 allows remote attackers to cause a denial of service crash via crafted snmpget replies...
SUSE CVE-2013-4215
The IPXPINGCOMMAND in contrib/checkipxping.c in Nagios Plugins 1.4.16 allows local users to gain privileges via a symlink attack on /tmp/ipxping/ipxping...
SUSE CVE-2014-4701
The checkdhcp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4702...
SUSE CVE-2014-4702
The checkicmp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4701...
SUSE CVE-2014-4703
lib/parseini.c in Nagios Plugins 2.0.2 allows local users to obtain sensitive information via a symlink attack on the configuration file in the extra-opts flag. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-4701...
SUSE: Security Advisory (SUSE-SU-2013:1219-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...