High severity8.8NVD Advisory· Published Dec 26, 2019· Updated Jun 17, 2026
CVE-2019-19681
CVE-2019-19681
Description
Pandora FMS 7.x suffers from remote code execution vulnerability. With an authenticated user who can modify the alert system, it is possible to define and execute commands as root/Administrator. NOTE: The product vendor states that the vulnerability as it is described is not in fact an actual vulnerability. They state that to be able to create alert commands, you need to have admin rights. They also state that the extended ACL system can disable access to specific sections of the configuration, such as defining new alert commands
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Pandora FMS/Pandora FMSdescription
- Range: 7.x
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.