Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nagios nagios - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4702
The check_icmp plugin in Nagios Plugins prior to 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4701.
Nagios Nagios
NA
CVE-2006-2162
Buffer overflow in CGI scripts in Nagios 1.x prior to 1.4 and 2.x prior to 2.3 allows remote malicious users to execute arbitrary code via a negative content length (Content-Length) HTTP header.
Nagios Nagios
6.3
CVSSv3
CVE-2017-12847
Nagios Core prior to 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "ki...
Nagios Nagios
6.1
CVSSv3
CVE-2016-6209
Cross-site scripting (XSS) vulnerability in Nagios.
Nagios Nagios -
9.8
CVSSv3
CVE-2016-0726
The Fedora Nagios package uses "nagiosadmin" as the default password for the "nagiosadmin" administrator account, which makes it easier for remote malicious users to obtain access by leveraging knowledge of the credentials.
Nagios Nagios -
7.8
CVSSv3
CVE-2016-10089
Nagios 4.3.2 and previous versions allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.
Nagios Nagios
NA
CVE-2013-1362
Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) prior to 2.14 might allow remote malicious users to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by bash.
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Nagios Remote Plug In Executor 2.8.1
Nagios Remote Plug In Executor 2.8
Nagios Remote Plug In Executor 2.5
Nagios Remote Plug In Executor 2.4
Nagios Remote Plug In Executor 2.0b1
Nagios Remote Plug In Executor 1.8
Nagios Remote Plug In Executor 2.10
Nagios Remote Plug In Executor 2.9
Nagios Remote Plug In Executor 2.5.2
Nagios Remote Plug In Executor 2.5.1
Nagios Remote Plug In Executor 2.0b3
Nagios Remote Plug In Executor 2.0b2
Nagios Remote Plug In Executor 1.3
Nagios Remote Plug In Executor
Nagios Remote Plug In Executor 2.8b1
Nagios Remote Plug In Executor 2.7.1
Nagios Remote Plug In Executor 2.3
Nagios Remote Plug In Executor 2.0
Nagios Remote Plug In Executor 1.7
1 EDB exploit
6.1
CVSSv3
CVE-2022-29272
In Nagios XI up to and including 5.8.5, an open redirect vulnerability exists in the login function that could lead to spoofing.
Nagios Nagios Xi
7.2
CVSSv3
CVE-2020-35578
An issue exists in the Manage Plugins page in Nagios XI prior to 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands.
Nagios Nagios Xi
1 Metasploit module
8.8
CVSSv3
CVE-2019-9164
Command injection in Nagios XI prior to 5.5.11 allows an authenticated users to execute arbitrary remote commands via a new autodiscovery job.
Nagios Nagios Xi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »