OP5 Monitor

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-34115	ITRS Group OP5 Monitor	Hig	0.65	—	0.02		Jul 15, 2025	An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via the 'cmd_str' parameter in the command_test.php endpoint. A user with access to the web interface can exploit the 'Test this command' feature to execute arbitrary shell commands as…
CVE-2021-40272	ITRS Group OP5 Monitor		0.00	—	0.01		Nov 14, 2022	OP5 Monitor 8.3.1, 8.3.2, and OP5 8.3.3 are vulnerable to Cross Site Scripting (XSS).

CVE-2025-34115HigJul 15, 2025
ITRS Group
OP5 Monitor
risk 0.65cvss —epss 0.02
An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via the 'cmd_str' parameter in the command_test.php endpoint. A user with access to the web interface can exploit the 'Test this command' feature to execute arbitrary shell commands as…
CVE-2021-40272Nov 14, 2022
ITRS Group
OP5 Monitor
risk 0.00cvss —epss 0.01
OP5 Monitor 8.3.1, 8.3.2, and OP5 8.3.3 are vulnerable to Cross Site Scripting (XSS).