Nagios XI <5.7.2 RCE via PHP Upload in Audio Import dir
CVE-2020-36863 Published on October 30, 2025
Nagios XI < 5.7.2 Unrestricted File Upload via Audio Import Directory
Nagios XI versions prior to 5.7.2 allow PHP files to be uploaded to the Audio Import directory and executed from that location. The upload handler did not properly restrict file types or enforce storage outside of the webroot, and the web server permitted execution within the upload directory. An authenticated attacker with access to the audio import feature could upload a crafted PHP file and then request it to achieve remote code execution with the privileges of the application service.
Weakness Type
What is an Unrestricted File Upload Vulnerability?
The software allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.
CVE-2020-36863 has been classified to as an Unrestricted File Upload vulnerability or weakness.
Products Associated with CVE-2020-36863
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-36863 are published in these products:
Affected Versions
Nagios XI:- Before 5.7.2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.