Unrated severityNVD Advisory· Published Oct 27, 2010· Updated Apr 29, 2026

CVE-2010-4099

Description

ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the Request parameter to ess.

Affected products

Nitrosecurity/Nitroview Esm Software
cpe:2.3:a:nitrosecurity:nitroview_esm_software:8.4.0a:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/15318nvdExploit
www.securityfocus.com/bid/44421nvdExploit
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/62768nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000