Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues.
8.8CVSS
8.8AI Score
0.002EPSS
Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API.
9.8CVSS
9.3AI Score
0.008EPSS
SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands.
9.8CVSS
9.9AI Score
0.005EPSS