Primary

Context

Nagios XI Command Injection Vulnerability in WinRM Plugin Allowing Arbitrary Command Execution

Vulnerability

A command injection vulnerability has been identified in the WinRM plugin of Nagios XI, affecting versions prior to 2024R2. This vulnerability arises from inadequate validation of user-supplied parameters, which allows authenticated administrators to inject shell metacharacters. These injections are executed with the same privileges as the Nagios XI web application user, potentially leading to unauthorized command execution on the underlying host operating system. Exploitation of this vulnerability could also be used to modify configurations, exfiltrate data, or disrupt monitoring operations.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the host operating system with the privileges of the Nagios XI web application user.

Remediation

Users can upgrade to Nagios XI version 2024R2 or later to address this vulnerability.

Added: Oct 30, 2025, 10:23 PM

Updated: Oct 30, 2025, 10:23 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

6.3

exploitability

4.8

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

6.3

exploitability

4.8

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nagios XI Command Injection Vulnerability in WinRM Plugin Allowing Arbitrary Command Execution

Vulnerability

Impact

Remediation

Affected Products

Nagios XI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating