HTTP: Nagios XI Magpie cURL Argument Injection
An argument injection vulnerability has been reported in the Magpie RSS module of Nagios XI. The vulnerability is due to insufficient validation of HTTPS URLs submitted to the magpie_debug.php script. A remote, unauthenticated attacker can exploit this vulnerability by sending a request containing a crafted URL parameter to the target system. Successful exploitation could result in the execution of arbitrary code as the apache user.
Extended Description
Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands via a crafted HTTP request.
Affected Products
Nagios nagios_xi
Short Name
HTTP:NAGIOS-MAG-CND-INJ
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Argument CVE-2018-15708 CVE-2018-15710 Injection Magpie Nagios XI cURL
Release Date
12/20/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3793
False Positive
Unknown
Vendors
Nagios
CVSS Score
7.5
7.2