Primary

Context

Pandora FMS OS Command Injection Vulnerability in Netflow Directory Field

Vulnerability

A command injection vulnerability has been identified in Pandora FMS versions 774 to 778. This issue arises from improper handling of special elements in the Netflow directory field, which may allow for OS command injection. The vulnerability is present in the Netflow function of the application.

Impact

Exploitation of this vulnerability allows for arbitrary OS command execution on the server where Pandora FMS is running.

Reproduction

To reproduce this vulnerability, navigate to the Netflow directory field within the affected versions of Pandora FMS. Introduce shell metacharacters in the Netflow parameters, such as 'ip_dst', 'dst_port', or 'src_port'. This can be done through the Netflow live view operation, which will trigger the command injection by executing the injected commands on the server.

Remediation

Users can update to Pandora FMS version 779 or later, where this vulnerability has been addressed.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

10.0

exploitability

5.6

remediation

0.0

relevance

0.2

threat

3.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

10.0

exploitability

5.6

remediation

0.0

relevance

0.2

threat

3.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pandora FMS OS Command Injection Vulnerability in Netflow Directory Field

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Pandora FMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating