Lucene search
K

4 matches found

hivepro
hivepro
added 2023/09/25 5:14 a.m.33 views

Critical Security Vulnerabilities Uncovered in Nagios XI

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Several security vulnerabilities have been identified in Nagios XI, a network monitoring software, which could potentially lead to privilege escalation and information disclosure. These...

7AI score0.11278EPSS
Exploits3
The Hacker News
The Hacker News
added 2023/09/20 12:38 p.m.55 views

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Followi...

8AI score0.11278EPSS
Exploits3
CVE
CVE
added 2023/09/19 12:0 a.m.69 views

CVE-2023-40932

CVE-2023-40932 affects Nagios XI 5.11.1 and earlier. An authenticated attacker with access to the Custom Logo component can inject arbitrary JavaScript/HTML via the alt-text field, affecting all pages containing the navbar (including login) and enabling credential theft. Public sources in connect...

5.4CVSS5.2AI score0.01027EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.16 views

CVE-2023-40932

A Cross-site scripting XSS vulnerability in Nagios XI version 5.11.1 and below allows authenticated attackers with access to the custom logo component to inject arbitrary javascript or HTML via the alt-text field. This affects all pages containing the navbar including the login page which means t...

5.7AI score0.01027EPSS
Exploits0References2
Rows per page
Query Builder