CVE-2021-3193
First published: Fri Jan 22 2021(Updated: )
Improper access and command validation in the Nagios Docker Config Wizard before 1.1.2, as used in Nagios XI through 5.7, allows an unauthenticated attacker to execute remote code as the apache user.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Nagios XI | <=5.7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-3193.
What is the severity of CVE-2021-3193?
CVE-2021-3193 has a severity rating of critical (9.8).
Which software is affected by CVE-2021-3193?
Nagios XI versions up to 5.7 are affected by CVE-2021-3193.
What is the impact of CVE-2021-3193?
CVE-2021-3193 allows an unauthenticated attacker to execute remote code as the apache user.
How can I fix CVE-2021-3193?
To fix CVE-2021-3193, update to Nagios Docker Config Wizard version 1.1.2 or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/references
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nagios
- canonical/nagios nagios xi
- version/nagios nagios xi/5.7.0