Skip to main content

Pandora Fms EUVD-2026-21996

| CVE-2026-30813 HIGH
SQL Injection (CWE-89)
2026-04-13 PandoraFMS GHSA-chf8-3p4x-rchj
SQLi Pandora Fms
8.7
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.7 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:L/U:Amber

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:L/U:Amber
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
N

Lifecycle Timeline

6
Re-analysis Queued
Apr 17, 2026 - 15:52 vuln.today
cvss_changed
Analysis Generated
Apr 13, 2026 - 16:43 vuln.today
CVSS changed
Apr 13, 2026 - 16:22 NVD
8.7 (HIGH)
EUVD ID Assigned
Apr 13, 2026 - 16:15 euvd
EUVD-2026-21996
Analysis Generated
Apr 13, 2026 - 16:15 vuln.today
CVE Published
Apr 13, 2026 - 15:49 nvd
HIGH 8.7

DescriptionCVE.org

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via module search. This issue affects Pandora FMS: from 777 through 800

AnalysisAI

SQL injection in Pandora FMS module search functionality allows authenticated attackers to extract, modify, or delete database contents across versions 777 through 800. Attackers with low-level privileges can execute arbitrary SQL commands through improperly sanitized search parameters, leading to high confidentiality and integrity impact. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Obtain low-privilege credentials
Delivery
Access module search interface
Exploit
Inject SQL payload in search parameter
Install
Database executes malicious query
C2
Extract sensitive data or modify configurations
Execute
Suppress monitoring alerts
Impact
Maintain persistent access
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Requires authenticated user account on Pandora FMS versions 777-800. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk assessment reveals moderate-to-high concern despite the 8.7 CVSS score. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker with low-level Pandora FMS credentials accesses the module search interface and injects SQL metacharacters into search parameters, such as crafting a search query containing UNION SELECT statements or Boolean-based blind SQL injection payloads. The application processes this malicious input without proper sanitization, executing the attacker's SQL commands against the backend database. …
Remediation Organizations should upgrade Pandora FMS to a patched version beyond the vulnerable 777-800 range. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Identify all Pandora FMS deployments running versions 777-800 and document network exposure and user access levels. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-21996 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy