Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSNPSCVELIST:CVE-2021-33177
HistoryOct 14, 2021 - 2:55 p.m.

CVE-2021-33177

2021-10-1414:55:39
CWE-89
SNPS
www.cve.org
5
nagios xi
bulk modifications
sql injection
authentication
arbitrary queries

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

46.9%

JSON

The Bulk Modifications functionality in Nagios XI versions prior to 5.8.5 is vulnerable to SQL injection. Exploitation requires the malicious actor to be authenticated to the vulnerable system, but once authenticated they would be able to execute arbitrary sql queries.

CNA Affected

[
  {
    "product": "Nagios XI",
    "vendor": "Nagios",
    "versions": [
      {
        "status": "affected",
        "version": "<5.8.5"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
cnvd 1
nessus 1
nvd
nvd
CVE-2021-33177
2021-10-14 15:15:08
prion
prion
Sql injection
2021-10-14 15:15:00
cve
cve
CVE-2021-33177
2021-10-14 15:15:08
cnvd
cnvd
Nagios XI SQL Injection Vulnerability (CNVD-2021-90908)
2021-10-15 00:00:00
nessus
nessus
Nagios XI < 5.8.5 Multiple Vulnerabilities
2021-09-24 00:00:00

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

46.9%

JSON
Related for CVELIST:CVE-2021-33177
nvd1prion1cve1cnvd1nessus1