CNNVD-202510-4122 Information
CNNVD ID
CNNVD-202510-4122
Related CVE
- CNNVD Published: 2025-10-30
Description (Chinese)
Nagios Fusion是美国Nagios公司的一个集中监控与可视化平台。 Nagios Fusion 4.2.0之前版本存在安全漏洞,该漏洞源于LDAP/AD身份验证服务器配置中未清理用户输入,可能导致存储型跨站脚本攻击。
Description (English)
Nagios Fusion is a centralized surveillance and visualization platform of the United States company Nagios. There was a security loophole in the pre-Nagios Fusion 4.2.0, which originated from uncleaned user input in the LDAP/AD authentication server configuration and could result in a storage-type cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Nagios
Published
2025-10-30
Last Modified
2026-02-24
References
https://www.nagios.com/products/security/#fusion https://www.nagios.com/changelog/nagios-fusion/ https://www.vulncheck.com/advisories/nagios-fusion-ldap-ad-integration-stored-xss https://access.redhat.com/security/cve/cve-2023-53690
Patch
https://www.nagios.com/products/security/#fusion
Share on: