CNNVD-202508-372 Information

CNNVD ID

CNNVD-202508-372

Related CVE

CVE-2012-10029

• CNNVD Published: 2025-08-05

Description (Chinese)

Nagios XI Network Monitor是美国Nagios公司的一个IT基础设施监控软件和警报解决方案。 Nagios XI Network Monitor 1.3之前版本存在安全漏洞，该漏洞源于未清理host参数，可能导致命令注入。

Description (English)

Nagios XI Network Monitor is an IT infrastructure monitoring software and alarm solution for the United States company Nagios. There was a security loophole in the earlier version of Najios XI Network Monitor 1.3, which originated from uncleaned host parameters and could lead to command injections.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Nagios

Published

2025-08-05

Last Modified

2026-02-24

References

https://packetstorm.news/files/id/118705/ https://www.nagios.com/products/nagios-xi/ https://www.exploit-db.com/exploits/23227 https://www.vulncheck.com/advisories/nagios-xi-network-monitor-graph-explorer-component-auth-command-injection https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/nagios_graph_explorer.rb https://access.redhat.com/security/cve/cve-2012-10029