Nagios Incident Manager vulnerabilities
3 known vulnerabilities affecting nagios/incident_manager.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2019-9203P2CRITICALCVSS 9.8fixed in 2.2.72019-03-28
CVE-2019-9203 [CRITICAL] CVE-2019-9203: Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in
Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API.
nvd
CVE-2019-9202P2HIGHCVSS 8.8fixed in 2.2.72019-03-28
CVE-2019-9202 [HIGH] CVE-2019-9202: Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code
Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues.
nvd
CVE-2019-9204P2CRITICALCVSS 9.8fixed in 2.2.72019-03-28
CVE-2019-9204 [CRITICAL] CWE-89 CVE-2019-9204: SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to e
SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands.
nvd