Nagios Favorites vulnerabilities
2 known vulnerabilities affecting nagios/favorites.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-26023P3MEDIUMCVSS 6.1fixed in 1.0.22021-02-03
CVE-2021-26023 [MEDIUM] CWE-79 CVE-2021-26023: The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to XSS.
The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to XSS.
nvd
CVE-2021-26024P3MEDIUMCVSS 5.3fixed in 1.0.22021-02-03
CVE-2021-26024 [MEDIUM] CWE-639 CVE-2021-26024: The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to Insecure Direct Object Ref
The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to Insecure Direct Object Reference: it is possible to create favorites for any other user account.
nvd