Exploit for #VU25848 Permissions, Privileges, and Access Controls in Nagios XI
Vulnerability identifier: #VU25848
Vulnerability risk: Low
CVSSv4.0: 7.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploits in database: 3
- May 9, 2021
- Nagios XI Prior to 5.6.6 getprofile.sh Authenticated Remote Command Execution [Metasploit]
- Nagios XI Scanner [Metasploit]
- March 18, 2020
- Nagios XI Authenticated Remote Command Execution [Metasploit]
Vulnerable software:
Nagios XI
Server applications /
Other server solutions
Vendor: nagios.org
