CVE-2013-10073 in Nagios信息

摘要

由 MITRE • 2025-10-31

Nagios XI versions prior to 2012R1.6 contain a shell command injection vulnerability in the Auto-Discovery tool. User-controlled input is passed to a shell without adequate sanitation or argument quoting, allowing an authenticated user with access to discovery functionality to execute arbitrary commands with the privileges of the application service.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

VulnCheck

预定

2025-10-28

披露

2025-10-31

管理

已接受

条目

VDB-330647

CPE

准备好

CWE

CWE-78 (已确认)

CVSS

8.8 (NVD)

EPSS

0.01939

KEV

否

活动

非常低

部门

Insurance, Pharma, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2013-10073
NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-10073
CVE Details	https://www.cvedetails.com/cve/CVE-2013-10073/

◂ 上一步一览下一步 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!