Vulnerabilities > Nagios > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-03-31 CVE-2014-5009 Command Injection vulnerability in multiple products
Snoopy allows remote attackers to execute arbitrary commands.
network
low complexity
snoopy redhat nagios CWE-77
critical
 9.8
9.8
2017-03-31 CVE-2008-7313 Command Injection vulnerability in multiple products
The _httpsrequest function in Snoopy allows remote attackers to execute arbitrary commands.
network
low complexity
snoopy redhat nagios CWE-77
critical
 9.8
9.8
2016-12-15 CVE-2016-9565 Improper Access Control vulnerability in Nagios
MagpieRSS, as used in the front-end component in Nagios Core before 4.2.2 might allow remote attackers to read or write to arbitrary files by spoofing a crafted response from the Nagios RSS feed server.
network
low complexity
nagios CWE-284
critical
 9.8
9.8