cbcvebase.

Nagios Xi vulnerabilities

192 known vulnerabilities affecting nagios/nagios_xi.

Total CVEs
192
CISA KEV
4
actively exploited
Public exploits
26
Exploited in wild
6
Severity breakdown
CRITICAL27HIGH71MEDIUM94

Vulnerabilities

Page 1 of 10
CVE-2019-15949P1HIGHCVSS 8.8KEVPoCfixed in 5.6.62019-09-05
CVE-2019-15949 [HIGH] CWE-78 CVE-2019-15949: Nagios XI before 5.6.6 allows remote command execution as root. The exploit requires access to the s Nagios XI before 5.6.6 allows remote command execution as root. The exploit requires access to the server as the nagios user, or access as the admin user via the web interface. The getprofile.sh script, invoked by downloading a system profile (profile.php?cmd=download), is executed as root via a passwordless sudo entry; the script executes check_plugin
nvd
CVE-2021-25298P1HIGHCVSS 8.8KEVPoC≥ 5.5.6, ≤ 5.7.52021-02-15
CVE-2021-25298 [HIGH] CWE-78 CVE-2021-25298: Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
nvd
CVE-2021-25296P1HIGHCVSS 8.8KEVPoC≥ 5.5.6, ≤ 5.7.52021-02-15
CVE-2021-25296 [HIGH] CVE-2021-25296: Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
nvd
CVE-2021-25297P1HIGHCVSS 8.8KEVPoC≥ 5.5.6, ≤ 5.7.52021-02-15
CVE-2021-25297 [HIGH] CWE-78 CVE-2021-25297: Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
nvd
CVE-2023-48084P1CRITICALCVSS 9.8ExploitedPoCfixed in 5.11.32023-12-14
CVE-2023-48084 [CRITICAL] CWE-89 CVE-2023-48084: Nagios XI before version 5.11.3 was discovered to contain a SQL injection vulnerability via the bulk Nagios XI before version 5.11.3 was discovered to contain a SQL injection vulnerability via the bulk modification tool.
nvd
CVE-2018-10737P2HIGHCVSS 7.2ExploitedPoC≥ 5.2.0, ≤ 5.2.9≥ 5.4.0, < 5.4.132018-05-16
CVE-2018-10737 [HIGH] CWE-89 CVE-2018-10737: A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch parameter.
nvd
CVE-2018-15708P1CRITICALCVSS 9.8PoCv5.5.62018-11-14
CVE-2018-15708 [CRITICAL] CVE-2018-15708: Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers to execute arbitrary commands via a crafted HTTP request.
nvd
CVE-2018-8735P2HIGHCVSS 8.8PoC≥ 5.2.0, < 5.4.132018-04-18
CVE-2018-8735 [HIGH] CWE-78 CVE-2018-8735: Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows a Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
nvd
CVE-2018-8734P1CRITICALCVSS 9.8PoC≥ 5.2.0, < 5.4.132018-04-18
CVE-2018-8734 [CRITICAL] CWE-89 CVE-2018-8734: SQL injection vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.1 SQL injection vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary SQL commands via the selInfoKey1 parameter.
nvd
CVE-2018-8733P1CRITICALCVSS 9.8PoC≥ 5.2.0, < 5.4.132018-04-18
CVE-2018-8733 [CRITICAL] CWE-89 CVE-2018-8733: Authentication bypass vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x befo Authentication bypass vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an unauthenticated attacker to make configuration changes and leverage an authenticated SQL injection vulnerability.
nvd
CVE-2020-5791P2HIGHCVSS 7.2PoC≥ 5.6.0, ≤ 5.7.3v5.7.32020-10-20
CVE-2020-5791 [HIGH] CWE-78 CVE-2020-5791: Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache user.
nvd
CVE-2024-24401P2CRITICALCVSS 9.8PoCv20242024-02-26
CVE-2024-24401 [CRITICAL] CWE-89 CVE-2024-24401: SQL Injection vulnerability in Nagios XI 2024R1.01 allows a remote attacker to execute arbitrary cod SQL Injection vulnerability in Nagios XI 2024R1.01 allows a remote attacker to execute arbitrary code via a crafted payload to the monitoringwizard.php component.
nvd
CVE-2018-8736P2HIGHCVSS 8.8PoC≥ 5.2.0, < 5.4.132018-04-18
CVE-2018-8736 [HIGH] CVE-2018-8736: A privilege escalation vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attack A privilege escalation vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to leverage an RCE vulnerability escalating to root.
nvd
CVE-2020-35578P2HIGHCVSS 7.2PoCfixed in 5.8.02021-01-13
CVE-2020-35578 [HIGH] CWE-78 CVE-2020-35578: An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-endin An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands.
nvd
CVE-2026-2041P1HIGHCVSS 8.8v20262026-02-20
CVE-2026-2041 [HIGH] CWE-78 CVE-2026-2041: Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability. Thi Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Nagios Host. Authentication is required to exploit this vulnerability. The specific flaw exists within the zabbixagent_configwizard_func method. The issue resul
nvd
CVE-2026-2043P1HIGHCVSS 8.8v20262026-02-20
CVE-2026-2043 [HIGH] CWE-78 CVE-2026-2043: Nagios Host esensors_websensor_configwizard_func Command Injection Remote Code Execution Vulnerabili Nagios Host esensors_websensor_configwizard_func Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Nagios Host. Authentication is required to exploit this vulnerability. The specific flaw exists within the esensors_websensor_configwizard_func method. T
nvd
CVE-2020-5792P2HIGHCVSS 7.2PoCv5.7.32020-10-20
CVE-2020-5792 [HIGH] CWE-88 CVE-2020-5792: Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, auth Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of the apache user.
nvd
CVE-2021-25299P3MEDIUMCVSS 6.1PoCv5.7.52021-02-15
CVE-2021-25299 [MEDIUM] CWE-79 CVE-2021-25299: Nagios XI version xi-5.7.5 is affected by cross-site scripting (XSS). The vulnerability exists in th Nagios XI version xi-5.7.5 is affected by cross-site scripting (XSS). The vulnerability exists in the file /usr/local/nagiosxi/html/admin/sshterm.php due to improper sanitization of user-controlled input. A maliciously crafted URL, when clicked by an admin user, can be used to steal his/her session cookies or it can be chained with the previous bugs
nvd
CVE-2021-37343P2HIGHCVSS 8.8PoCfixed in 5.8.52021-08-13
CVE-2021-37343 [HIGH] CWE-22 CVE-2021-37343: A path traversal vulnerability exists in Nagios XI below version 5.8.5 AutoDiscovery component and c A path traversal vulnerability exists in Nagios XI below version 5.8.5 AutoDiscovery component and could lead to post authenticated RCE under security context of the user running Nagios.
nvd
CVE-2018-15710P2HIGHCVSS 7.8PoCv5.5.62018-11-14
CVE-2018-15710 [HIGH] CWE-78 CVE-2018-15710: Nagios XI 5.5.6 allows local authenticated attackers to escalate privileges to root via Autodiscover Nagios XI 5.5.6 allows local authenticated attackers to escalate privileges to root via Autodiscover_new.php.
nvd
1 / 10Next →
Nagios Xi vulnerabilities | cvebase