CNNVD-202508-3080 Information

CNNVD ID

CNNVD-202508-3080

Related CVE

CVE-2025-56432

• CNNVD Published: 2025-08-26

Description (Chinese)

Nagios XI是美国Nagios公司的一套IT基础设施监控解决方案。该方案支持对应用、服务、操作系统等进行监控和预警。 Nagios XI 2024R2版本存在安全漏洞，该漏洞源于渲染性能数据的组件存在跨站脚本，可能导致执行任意JavaScript。

Description (English)

Nagios XI is an IT infrastructure monitoring solution for the United States company Nagios. The programme supports monitoring and early warning of applications, services, operating systems, etc. There is a security loophole in the Nagios XI 2024R2 version, which stems from the presence of a cross-site script for components reproducing performance data, which could lead to the execution of any JavaScript.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Nano

Published

2025-08-26

Last Modified

2026-02-24

References

https://www.nagios.com/changelog/ http://nagios.com https://nvd.nist.gov/vuln/detail/CVE-2025-56432

Patch

https://www.nagios.com/products/nagios-xi/downloads/