Lucene search
K

4 matches found

hivepro
hivepro
added 2023/09/25 5:14 a.m.33 views

Critical Security Vulnerabilities Uncovered in Nagios XI

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Several security vulnerabilities have been identified in Nagios XI, a network monitoring software, which could potentially lead to privilege escalation and information disclosure. These...

7AI score0.11278EPSS
Exploits3
The Hacker News
The Hacker News
added 2023/09/20 12:38 p.m.55 views

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Followi...

8AI score0.11278EPSS
Exploits3
NVD
NVD
added 2023/09/19 11:15 p.m.29 views

CVE-2023-40934

A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings...

7.2CVSS8.1AI score0.0321EPSS
Exploits0References2
CVE
CVE
added 2023/09/19 12:0 a.m.63 views

CVE-2023-40934

CVE-2023-40934 affects Nagios XI 5.11.1 and earlier, where an SQL injection via the Core Configuration Manager’s host escalation notification settings is possible for authenticated users with privileges to manage host escalations. Root cause: improper handling of SQL in the host escalation config...

7.2CVSS7.5AI score0.0321EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder