This page lists publicly disclosed CVE vulnerabilities affecting nagios remote_plug_in_executor (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-6582 | Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call. | [email protected] | 7.5 | 1.65% | 2020-03-16 | 2024-11-21 |
| CVE-2020-6581 | Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nasty_metachars interprets \n as the character \ and the character n (not as the \n newline sequence). This can cause command injection. | [email protected] | 7.3 | 0.23% | 2020-03-16 | 2024-11-21 |
| CVE-2013-1362 | Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by bash. | [email protected] | 7.5 | 76.44% | 2013-07-09 | 2026-04-29 |