HTTP: Nagios XI Autodiscovery Job Command Injection
This signature detects attempts to exploit a known vulnerability against Autodiscovery Job component of Nagios XI. The vulnerability is due to insufficient validation of parameters submitted when creating a new autodiscovery job. A remote, authenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitation could result in the execution of arbitrary code as the apache user.
Extended Description
Command injection in Nagios XI before 5.5.11 allows an authenticated users to execute arbitrary remote commands via a new autodiscovery job.
Affected Products
Nagios nagios_xi
Short Name
HTTP:NAGIOSXI-CND-INJ-JOB
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Autodiscovery CVE-2019-9164 CVE-2020-28648 Command Injection Job Nagios XI
Release Date
06/11/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Nagios
CVSS Score
6.5
9.0