Nagios Log Server vulnerabilities
23 known vulnerabilities affecting nagios/log_server.
Total CVEs
23
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH7MEDIUM13
Vulnerabilities
Page 2 of 2
CVE-2016-15049P4MEDIUMCVSS 5.4fixed in 1.4.22025-10-30
CVE-2016-15049 [MEDIUM] CWE-79 CVE-2016-15049: Nagios Log Server versions prior to 1.4.2 are vulnerable to cross-site scripting (XSS) in the Dashbo
Nagios Log Server versions prior to 1.4.2 are vulnerable to cross-site scripting (XSS) in the Dashboards section when rendering log entries in the Logs table. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application origin.
nvd
CVE-2023-7321P4MEDIUMCVSS 5.4fixed in 2.1.142025-10-30
CVE-2023-7321 [MEDIUM] CWE-79 CVE-2023-7321: Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting (XSS) via the Snap
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting (XSS) via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application origin.
nvd
CVE-2019-15898P4MEDIUMCVSS 6.1fixed in 2.0.82019-09-03
CVE-2019-15898 [MEDIUM] CWE-79 CVE-2019-15898: Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page.
Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page.
nvd
← Previous2 / 2