CVE-2013-3504

GroundWork Monitor Enterprise 6.7.0 - Authenticated Path Traversal and Arbitrary File Write via MONARCH monarch.cgi

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in monarch.cgi in the MONARCH component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to overwrite arbitrary files by leveraging access to the nagios account.

Scores

EPSS 0.0185
EPSS Percentile 76.5%

Details

CWE
CWE-22
Status published
Products (1)
gwos/groundwork_monitor 6.7.0
Published May 08, 2013
Tracked Since Feb 18, 2026