CVE Catalog

CVE-2026-34187

Critical
Published: Translated: NVD NIST

Summary

CVE-2026-34187 is a vulnerability related to improper neutralization of special elements used in SQL commands, allowing SQL Injection via graph container parameter. This issue affects Pandora FMS versions from 777 to 800.

Risk Assessment

An attacker could exploit this vulnerability to inject malicious SQL code, potentially leading to unauthorized access or modification of data. This poses a serious threat to the integrity and confidentiality of data within the organization.

Recommendation

It is recommended to update Pandora FMS to the latest version to mitigate this vulnerability. Additionally, conducting a security audit of the application is advisable to minimize the risk of SQL Injection attacks.

Original NVD description (English source)

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. This issue affects Pandora FMS: from 777 through 800

Vulnerability data from NVD (NIST) · CISA KEV · EPSS