← voltar
CVE-2022-29271

CVE-2022-29271

EPSS 1.5%
In Nagios XI through 5.8.5, a read-only Nagios user (due to an incorrect permission check) is able to schedule downtime for any host/services. This allows an attacker to permanently disable all monitoring checks.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXThttps://github.com/4LPH4-NL/CVEshttps://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xihttps://www.nagios.com/downloads/nagios-xi/change-log/