Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache user.Referenceshttps://www.tenable.com/security/research/tra-2020-58http://packetstormsecurity.com/files/159743/Nagios-XI-5.7.3-Remote-Command-Injection.htmlhttp://packetstormsecurity.com/files/162235/Nagios-XI-5.7.3-Remote-Code-Execution.html
