CVE-2021-37346: OS Command Injection
First published: Fri Aug 13 2021(Updated: )
Nagios XI WatchGuard Wizard before version 1.4.8 is vulnerable to remote code execution through Improper neutralisation of special elements used in an OS Command (OS Command injection).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Nagios Xi Watchguard Wizard | <1.4.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for Nagios XI WatchGuard Wizard?
The vulnerability ID for Nagios XI WatchGuard Wizard is CVE-2021-37346.
What is the severity of CVE-2021-37346?
The severity of CVE-2021-37346 is critical.
What is the affected software version of Nagios XI WatchGuard Wizard?
The affected software version of Nagios XI WatchGuard Wizard is up to version 1.4.8.
What is the risk associated with CVE-2021-37346?
The risk associated with CVE-2021-37346 is remote code execution through OS Command injection.
How can I fix CVE-2021-37346?
To fix CVE-2021-37346, update Nagios XI WatchGuard Wizard to version 1.4.8 or later.
- collector/nvd-index
- agent/author
- agent/weakness
- agent/event
- agent/severity
- agent/references
- agent/description
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nagios
- canonical/nagios nagios xi watchguard wizard