Lucene search
K

6 matches found

Prion
Prion
added 2021/02/15 1:15 p.m.26 views

Command injection

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command...

9CVSS8.9AI score0.75196EPSS
Exploits8References6Affected Software1
Prion
Prion
added 2021/02/15 1:15 p.m.29 views

Command injection

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS...

9CVSS8.9AI score0.71536EPSS
Exploits7References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/02/15 12:0 a.m.71 views

CVE-2021-25296

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS...

9CVSS2.8AI score0.71536EPSS
In wildExploits7References7
Cvelist
Cvelist
added 2021/02/15 12:0 a.m.36 views

CVE-2021-25298

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command...

9.2AI score0.75196EPSS
Exploits5References5
Cvelist
Cvelist
added 2021/02/15 12:0 a.m.28 views

CVE-2021-25297

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command...

9.2AI score0.58742EPSS
Exploits6References5
Cvelist
Cvelist
added 2021/02/15 12:0 a.m.28 views

CVE-2021-25296

Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS...

9.2AI score0.71536EPSS
Exploits7References5
Rows per page
Query Builder