Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv3

CVE-2020-5791

Published: 20/10/2020 Updated: 24/01/2023
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 940
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Vulnerability Summary

Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache user.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

nagios nagios xi

Exploits

Exploit DB: Nagios XI 5.7.3 Remote Code Execution
This Metasploit module exploits CVE-2020-5791, an OS command injection vulnerability on Nagios XI versions 560 through 573 in admin/mibsphp that enables an authenticated user with admin privileges to achieve remote code execution as either the apache user or the www-data user ...
Exploit DB: Nagios XI 5.7.3 Remote Command Injection
Nagios XI version 573 mibsphp remote command injection exploit ...
Exploit DB: Nagios XI 5.6.0-5.7.3 - Mibs.php Authenticated Remote Code Exection
This module exploits CVE-2020-5791, an OS command injection vulnerability in `admin/mibsphp` that enables an authenticated user with admin privileges to achieve remote code execution as either the `apache` user or the `www-data` user on NagiosXI version 560 to 573 inclusive (exact user depends on the version of Na ...

Metasploit Modules

Nagios XI 5.6.0-5.7.3 - Mibs.php Authenticated Remote Code Exection

This module exploits CVE-2020-5791, an OS command injection vulnerability in `admin/mibs.php` that enables an authenticated user with admin privileges to achieve remote code execution as either the `apache` user or the `www-data` user on NagiosXI version 5.6.0 to 5.7.3 inclusive (exact user depends on the version of NagiosXI installed as well as the OS its installed on). Valid credentials for a Nagios XI admin user are required. This module has been successfully tested against Nagios XI 5.7.3 running on CentOS 7.

msf > use exploit/linux/http/nagios_xi_mibs_authenticated_rce
msf exploit(nagios_xi_mibs_authenticated_rce) > show targets
    ...targets...
msf exploit(nagios_xi_mibs_authenticated_rce) > set TARGET < target-id >
msf exploit(nagios_xi_mibs_authenticated_rce) > show options
    ...show and set options...
msf exploit(nagios_xi_mibs_authenticated_rce) > exploit

References

CWE-78https://www.tenable.com/security/research/tra-2020-58http://packetstormsecurity.com/files/159743/Nagios-XI-5.7.3-Remote-Command-Injection.htmlhttp://packetstormsecurity.com/files/162235/Nagios-XI-5.7.3-Remote-Code-Execution.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/162235/Nagios-XI-5.7.3-Remote-Code-Execution.htmlhttps://www.rapid7.com/db/modules/exploit/linux/http/nagios_xi_mibs_authenticated_rce/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310CVE-2024-21683CVE-2024-22187chromedeserializationXPath injectionCVE-2024-27842denial of serviceCVE-2024-24851googleCVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook