CVE-2020-5791

HIGH

Nagios XI 5.6.0-5.7.3 - Mibs.php Authenticated Remote Code Exection

Title source: metasploit

Description

Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache user.

Exploits (3)

exploitdb WORKING POC

by Matthew Aberegg · pythonwebappsphp

https://www.exploit-db.com/exploits/48959

View Code ZIP pw:eip

metasploit SCANNER

by Erik Wynter · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/nagios_xi_scanner.rb

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Chris Lyne, Matthew Aberegg, Erik Wynter · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/nagios_xi_mibs_authenticated_rce.rb

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/159743/Nagios-XI-5.7.3-Remote-Command-Injection.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/162235/Nagios-XI-5.7.3-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://www.tenable.com/security/research/tra-2020-58

Scores

CVSS v3 7.2

EPSS 0.8775

EPSS Percentile 99.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-78

Status published

Products (1)

nagios/nagios_xi 5.6.0 - 5.7.3

Published Oct 20, 2020

Tracked Since Feb 18, 2026