Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Nagios XI 5.5.10 XSS / Remote Code Execution Vulnerability

🗓️ 15 Apr 2019 00:00:00Reported by Abdel Adim OisfiType 
zdt
 zdt🔗 0day.today👁 83 Views

Nagios XI 5.5.10 XSS / Remote Code Execution Vulnerabilit

Related
Code
ReporterTitlePublishedViews
Family
CNVD		Nagios XI Command Injection Vulnerability
29 Mar 201900:00
cnvd
CNVD		Nagios XI SQL Injection Vulnerability (CNVD-2019-10017)
29 Mar 201900:00
cnvd
CNVD		Nagios XI Elevation of Privilege Vulnerability (CNVD-2019-10018)
29 Mar 201900:00
cnvd
CNVD		Nagios XI Cross-Site Scripting Vulnerability (CNVD-2019-10019)
29 Mar 201900:00
cnvd
CNVD		Nagios IM Arbitrary Code Execution Vulnerability
29 Mar 201900:00
cnvd
CNVD		Nagios IM Authorization Bypass Vulnerability
29 Mar 201900:00
cnvd
CNVD		Nagios IM SQL Injection Vulnerability
29 Mar 201900:00
cnvd
Check Point Advisories		Cross-Site Scripting Scanning Attempt (CVE-2015-4661; CVE-2019-16385; CVE-2019-9167; CVE-2020-10946; CVE-2020-12261; CVE-2020-13228; CVE-2020-13627; CVE-2020-13628; CVE-2020-14953; CVE-2021-21801; CVE-2021-25080; CVE-2022-25305; CVE-2022-28102)
22 Mar 201600:00
checkpoint_advisories
Check Point Advisories		Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)
26 Jul 201600:00
checkpoint_advisories
Check Point Advisories		Nagios Xi Remote Command Execution (CVE-2019-9164)
25 Nov 201900:00
checkpoint_advisories
Rows per page
Nagios XI 5.5.10: XSS to #

Pubblicato dapolict 10 Aprile 2019  

Tl;dr

A remote attacker could trick an authenticated victim (with “autodiscovery job” creation privileges) to visit a malicious URL and obtain a remote root shell via a reflected Cross-Site Scripting (XSS), an authenticated Remote Code Execution (RCE) and a Local Privilege Escalation (LPE).



Introduction

A few months ago I read about some Nagios XI vulnerabilities which got me interested in studying it a bit by myself. For those of you who don’t know what Nagios XI is I suggest you have a look at their website.

Fortunately, around that same time the team I am part of in Shielder chose to start spending one week each month to research or 0day discovery projects. These vulnerabilities are part of the ones I have found during that week, you can read about all of them at the security disclosures page. My target was to find an unauthenticated remote code execution with zero interaction needed, which I couldn’t find in that time span, maybe I’ll have a second look sometime in the future

#  0day.today [2019-04-17]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
15 Apr 2019 00:00Current
0.9Low risk
Vulners AI Score0.9
EPSS0.6214
nagios xicross-site scriptingremote code executionprivilege escalationsecurity disclosuresvulnerability
83