Nagios XI 5.7.5 and earlier allows authenticated admins to upload arbitrary files due to improper validation of the rename functionality in custom-includes component, which leads to remote code execution by uploading php files.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-06-07T21:05:03
Updated: 2024-08-03T16:53:17.204Z
Reserved: 2021-01-22T00:00:00
Link: CVE-2021-3277
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-06-07T22:15:07.827
Modified: 2021-06-15T17:15:29.140
Link: CVE-2021-3277
Redhat
No data.