Skip to main content

Incident Manager

3 CVEs product

Monthly

CVE-2019-9204 CRITICAL POC THREAT Act Now

SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Incident Manager
NVD
CVSS 3.1
9.8
EPSS
19.7%
CVE-2019-9203 CRITICAL POC THREAT Act Now

Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Incident Manager
NVD
CVSS 3.1
9.8
EPSS
20.4%
CVE-2019-9202 HIGH POC THREAT This Week

Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Incident Manager
NVD
CVSS 3.1
8.8
EPSS
24.2%
EPSS 20% CVSS 9.8
CRITICAL POC THREAT Act Now

SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Incident Manager
NVD
EPSS 20% CVSS 9.8
CRITICAL POC THREAT Act Now

Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Incident Manager
NVD
EPSS 24% CVSS 8.8
HIGH POC THREAT This Week

Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Incident Manager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy