Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nagios vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-7206
HP nagios plugin for iLO (nagios-plugins-hpilo v1.50 and previous versions) has a php code injection vulnerability.
Hp Nagios-plugins-hpilo
4
CVSSv2
CVE-2020-13977
Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: thi...
Nagios Nagios 4.4.5
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
3.5
CVSSv2
CVE-2020-10819
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ username parameter.
Nagios Nagios Xi 5.6.11
3.5
CVSSv2
CVE-2020-10820
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter.
Nagios Nagios Xi 5.6.11
3.5
CVSSv2
CVE-2020-10821
Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter.
Nagios Nagios Xi 5.6.11
3.7
CVSSv2
CVE-2020-6581
Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nasty_metachars interprets \n as the character \ and the character n (not as the \n newline sequence). This can cause command injection.
Nagios Remote Plug In Executor 3.2.1
Fedoraproject Fedora 32
5
CVSSv2
CVE-2020-6582
Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call.
Nagios Remote Plug In Executor 3.2.1
Fedoraproject Fedora 32
4
CVSSv2
CVE-2020-6584
Nagios Log Server 2.1.3 has Incorrect Access Control.
Nagios Nagios 2.1.3
3.5
CVSSv2
CVE-2020-6586
Nagios Log Server 2.1.3 allows XSS by visiting /profile and entering a crafted name field that is mishandled on the /admin/users page. Any malicious user with limited access can store an XSS payload in his Name. When any admin views this, the XSS is triggered.
Nagios Nagios 2.1.3
6.8
CVSSv2
CVE-2020-6585
Nagios Log Server 2.1.3 has CSRF.
Nagios Nagios 2.1.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »