How severe is CVE-2023-37154?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.4 out of 10.

What type of vulnerability is CVE-2023-37154?

This is classified as CWE-77, which is a common weakness in software security.

CVE-2023-37154

HIGH Year: 2023

CVSS v3 Score

8.4

High

Weakness Type

CWE-77

View all →

Vulnerability Description

check_by_ssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with \${IFS}. This has been categorized both as fixed in e8810de, and as intended behavior.

CVE-2020-14433

HIGH

CVSS:8.4(High)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.15.25, RBK853 before 3.2.15.25, RBK842 before 3.2.15.25, RBR850 before 3.2.15.25, RBS...

CWE-772020

CVE-2020-14434

HIGH

CVSS:8.4(High)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RB...

CWE-772020

CVE-2020-35777

HIGH

CVSS:8.4(High)

NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command injection.

CWE-772020

CVE-2021-29069

HIGH

CVSS:8.4(High)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects XR450 before 2.3.2.114, XR500 before 2.3.2.114, and WNR2000v5 before 1.0.0.76.

CWE-772021

CVE-2021-29070

HIGH

CVSS:8.4(High)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and...

CWE-772021

CVE-2021-29072

HIGH

CVSS:8.4(High)

CWE-772021

CVE-2023-37154

Vulnerability Description

Related Vulnerabilities

CVE-2020-14433

CVE-2020-14434

CVE-2020-35777

CVE-2021-29069

CVE-2021-29070

CVE-2021-29072