Skip to main content

Remote Plug In Executor

3 CVEs product

Monthly

CVE-2020-6582 HIGH POC This Week

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Remote Plug In Executor Fedora
NVD
CVSS 3.1
7.5
EPSS
3.9%
CVE-2020-6581 HIGH POC This Week

Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nasty_metachars interprets \n as the character \ and the character n (not as the \n newline sequence). Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Remote Plug In Executor Fedora
NVD
CVSS 3.1
7.3
EPSS
1.6%
CVE-2013-1362 HIGH POC THREAT Act Now

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.4%.

Information Disclosure Opensuse Remote Plug In Executor
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
76.4%
Threat
5.3
EPSS 4% CVSS 7.5
HIGH POC This Week

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Remote Plug In Executor Fedora
NVD
EPSS 2% CVSS 7.3
HIGH POC This Week

Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nasty_metachars interprets \n as the character \ and the character n (not as the \n newline sequence). Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Remote Plug In Executor Fedora
NVD
EPSS 76% 5.3 CVSS 7.5
HIGH POC THREAT Act Now

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.4%.

Information Disclosure Opensuse Remote Plug In Executor
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy