Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nagios nagios - vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2019-9164
Command injection in Nagios XI prior to 5.5.11 allows an authenticated users to execute arbitrary remote commands via a new autodiscovery job.
Nagios Nagios Xi
801
VMScore
CVE-2020-28648
Improper input validation in the Auto-Discovery component of Nagios XI prior to 5.7.5 allows an authenticated malicious user to execute remote code.
Nagios Nagios Xi
890
VMScore
CVE-2020-28910
Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and previous versions allows for Privilege Escalation via creation of symlinks, which are mishandled in getprofile.sh.
Nagios Nagios Xi
312
VMScore
CVE-2020-27988
Nagios XI prior to 5.7.5 is vulnerable to XSS in Manage Users (Username field).
Nagios Nagios Xi
312
VMScore
CVE-2020-27989
Nagios XI prior to 5.7.5 is vulnerable to XSS in Dashboard Tools (Edit Dashboard).
Nagios Nagios Xi
312
VMScore
CVE-2020-27990
Nagios XI prior to 5.7.5 is vulnerable to XSS in the Deployment tool (add agent).
Nagios Nagios Xi
312
VMScore
CVE-2020-27991
Nagios XI prior to 5.7.5 is vulnerable to XSS in Account Information (Email field).
Nagios Nagios Xi
435
VMScore
CVE-2018-13457
qh_echo in Nagios Core 4.4.1 and previous versions is prone to a NULL pointer dereference vulnerability, which allows malicious users to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket.
Nagios Nagios Core
1 EDB exploit
409
VMScore
CVE-2021-37349
Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because cleaner.php does not sanitise input read from the database.
Nagios Nagios Xi
445
VMScore
CVE-2021-37351
Nagios XI before version 5.8.5 is vulnerable to insecure permissions and allows unauthenticated users to access guarded pages through a crafted HTTP request to the server.
Nagios Nagios Xi
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »