CVE-2020-28905: Code Injection
First published: Mon May 24 2021(Updated: )
Improper Input Validation in Nagios Fusion 4.1.8 and earlier allows an authenticated attacker to execute remote code via table pagination.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Fusion | <=4.1.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID is CVE-2020-28905.
What is the title of this vulnerability?
The title of this vulnerability is 'Improper Input Validation in Nagios Fusion 4.1.8 and earlier allows an authenticated attacker to execute remote code via table pagination.'
What is the severity of CVE-2020-28905?
The severity of CVE-2020-28905 is high with a severity value of 8.8.
What is the affected software of CVE-2020-28905?
The affected software is Nagios Fusion 4.1.8 and earlier.
How can an authenticated attacker exploit this vulnerability?
An authenticated attacker can exploit this vulnerability by executing remote code via table pagination.
- collector/nvd-index
- agent/type
- agent/weakness
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- agent/source
- vendor/nagios
- canonical/nagios fusion
- version/nagios fusion/4.1.8