Which versions of Pandora Fms are affected by EUVD-2026-21999?

CVE-2026-34188 is a critical command injection vulnerability in Pandora FMS versions 777-800 that allows authenticated administrators to execute arbitrary OS commands, potentially compromising system…

How to fix or mitigate EUVD-2026-21999?

Within 24 hours: inventory all Pandora FMS deployments and identify instances running versions 777-800; restrict administrative access to Event Response functionality through access controls and privileged access management (PAM) policies. Within 7 days: implement compensating controls including network segmentation, activity logging on all administrative actions, and real-time monitoring of Event Response execution. Within 30 days: upgrade to Pandora FMS version 801 or later (if available from vendor) or evaluate alternative monitoring solutions; conduct access review of all administrative accounts and enforce multi-factor authentication (MFA) for administrative login.

Pandora Fms EUVD-2026-21999

Q: What is the CVSS score of EUVD-2026-21999?

EUVD-2026-21999 has a CVSS 4.0 base score of 7.5 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber. EPSS exploitation probability: 0.4%.

| CVE-2026-34188 HIGH

OS Command Injection (CWE-78)

2026-04-13 PandoraFMS

GHSA-xqmq-m74q-gr4q

Command Injection Pandora Fms

7.5

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.5 HIGH

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Lifecycle Timeline

Re-analysis Queued

Apr 17, 2026 - 15:52 vuln.today

cvss_changed

Analysis Generated

Apr 13, 2026 - 16:44 vuln.today

CVSS changed

Apr 13, 2026 - 16:22 NVD

7.5 (HIGH)

EUVD ID Assigned

Apr 13, 2026 - 16:15 euvd

EUVD-2026-21999

Analysis Generated

Apr 13, 2026 - 16:15 vuln.today

CVE Published

Apr 13, 2026 - 15:50 nvd

HIGH 7.5

DescriptionCVE.org

Improper Neutralization of Special Elements used in an OS Command vulnerability allows OS Command Injection via Event Response execution. This issue affects Pandora FMS: from 777 through 800

AnalysisAI

OS command injection in Pandora FMS versions 777 through 800 enables high-privileged remote attackers to execute arbitrary operating system commands through the Event Response execution functionality. While requiring administrative credentials (PR:H), successful exploitation grants extensive system access with high confidentiality and integrity impact. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon

Compromise admin credentials

Delivery

Authenticate to Pandora FMS console

Exploit

Navigate to Event Response configuration

Install

Inject OS commands in response parameters

Trigger event response execution

Execute

Execute arbitrary commands on server

Impact

Establish persistence or lateral movement