CVE-2023-47401

Name of the Vulnerable Software and Affected Versions Nagios XI (affected versions not specified)

Description The issue exists due to the failure to neutralize special elements used in operating system commands. This can be exploited by a remote attacker to execute arbitrary code with root privileges by sending a specially crafted HTTP POST request to the web server.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.