Security Advisory

CVE-2023-53948

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-19 21:05:49

Last updated 2026-04-07 14:08:05

Assigner VulnCheck

State PUBLISHED

Description

Lilac-Reloaded for Nagios 2.0.8 contains a remote code execution vulnerability in the autodiscovery feature that allows attackers to inject arbitrary commands. Attackers can exploit the lack of input filtering in the nmap_binary parameter to execute a reverse shell by sending a crafted POST request to the autodiscovery endpoint.

← Browse all CVEs View on cve.org ↗