CyberSec.Space Logo
Back to CVE Browser

CVE-2002-1959

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0410%
EPSS Percentile17.51th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Nagios 1.0b1 through 1.0b3 allows remote attackers to execute arbitrary commands via shell metacharacters in plugin output.

Affected Platforms (CPE)

πŸ“¦
Nagios

Nagios

= 1.0_b1
πŸ“¦
Nagios

Nagios

= 1.0_b2
πŸ“¦
Nagios

Nagios

= 1.0_b3

References & Advisories

πŸ”— http://www.iss.net/security_center/static/9508.php
πŸ”— http://www.nagios.org/changelog.php
πŸ”— http://www.securityfocus.com/bid/5174
πŸ”— http://www.iss.net/security_center/static/9508.php
πŸ”— http://www.nagios.org/changelog.php
πŸ”— http://www.securityfocus.com/bid/5174

Related Vulnerabilities

CVE-2019-91659.8

SQL injection vulnerability in Nagios XI before 5.5.11 allows attackers to execute arbitrary SQL commands via the API when using f...

CVE-2019-92039.8

Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API.

CVE-2018-171489.8

An Insufficient Access Control vulnerability (leading to credential disclosure) in coreconfigsnapshot.php (aka configuration snaps...

CVE-2019-92049.8

SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands.