CVE-2021-37347 · Vexday

CVE-2021-37347

EPSS 0.8%

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because getprofile.sh does not validate the directory name it receives as an argument.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.nagios.com/downloads/nagios-xi/change-log/