Path traversal in Nagios XI

#VU37148 Path traversal in Nagios XI

Published: 2018-04-30 | Updated: 2020-08-08

Vulnerability identifier: #VU37148

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-10553

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Nagios XI
Server applications / Other server solutions

Vendor: nagios.org

Description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindow=../ substrings.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Nagios XI: 5.4.13

External links
http://code610.blogspot.com/2018/04/few-bugs-in-latest-nagios-xi-5413.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Nagios XI