Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / nagios

nagios

301 tracked vulnerabilities.

CVE-2025-44824 HIGH

Nagios Log Server < 2024R1.3.2 - Authenticated Denial of Service via Elasticsearch Stop API

CVE-2025-44823 CRITICAL

Nagios Log Server <2024R1.3.2 - Info Disclosure

CVE-2025-34227 HIGH

Nagios XI < 2026R1 - Authenticated OS Command Injection via Database Wizard Arguments

CVE-2025-56432 MEDIUM

Nagios XI 2024R2 - Stored Cross-Site Scripting in Performance Data Renderer

CVE-2025-28059 HIGH

Nagios Network Analyzer 2024R1.0.3 - Insufficient Session Expiration

CVE-2025-29471 HIGH

Nagios Log Server 2024R1.3.1 - Cross-Site Scripting via Email Field

CVE-2025-28132 MEDIUM

Nagios Network Analyzer 2024R1.0.3 - Insufficient Session Expiration

CVE-2025-28131 MEDIUM

Nagios Network Analyzer 2024R1.0.3 - Broken Access Control

CVE-2024-13998 MEDIUM

Nagios XI <2024R1.1.3 - Info Disclosure

CVE-2024-13997 HIGH

Nagios XI < 2024R1.1.3 - Authenticated Privilege Escalation via Migrate Server Feature

CVE-2024-13992 MEDIUM

Nagios XI < 2024R1.1 - Stored Cross-Site Scripting via Missing Page

CVE-2024-58273 HIGH

Nagios Log Server < 2024R1.0.2 - Local Privilege Escalation from Apache User to Root

CVE-2024-14009 HIGH

Nagios XI < 2024R1.0.1 - Authenticated Privilege Escalation via System Profile

CVE-2024-14008 HIGH

Nagios XI < 2024R1.3.2 - Authenticated Remote Code Execution via WinRM Configuration Wizard

CVE-2024-14006 MEDIUM

Nagios XI < 2024R1.2.2 - Host Header Injection

CVE-2024-14005 HIGH

Nagios XI < 2024R1.2 - Authenticated OS Command Injection via Docker Wizard

CVE-2024-14004 HIGH

Nagios XI < 2024R1.2 - Authenticated Privilege Escalation via NagVis Configuration Handling

CVE-2024-14003 CRITICAL

Nagios XI < 2024R1.2 - Remote Code Execution via NRDP Server Plugin Parameter Injection

CVE-2024-14002 MEDIUM

Nagios XI < 2024R1.1.4 - Authenticated Local File Inclusion via NagVis Integration

CVE-2024-14001 MEDIUM

Nagios XI < 2024R1.1.3 - Cross-Site Scripting via Executive Summary Report

CVE-2024-14000 MEDIUM

Nagios XI < 2024R1.1.3 - Cross-Site Scripting via Capacity Planning Report

CVE-2024-13999 CRITICAL

Nagios XI <2024R1.1.3 - Info Disclosure

CVE-2024-13996 CRITICAL

Nagios XI < 2024R1.1.3 - Insufficient Session Expiration

CVE-2024-13995 HIGH

Nagios XI <2024R1.1.2 - Info Disclosure

CVE-2024-13994 CRITICAL

Nagios XI < 2024R1.1.2 - Missing Authorization via Insecure Login Option

Previous Page 2 of 13 Next

Products

nagios_xi 192 nagios 37 log_server 23 fusion 19 network_analyzer 7 nagios_core 5 XI 3 incident_manager 3 plugins 3 remote_plug_in_executor 3 Log Server 2 Nagios XI 2 favorites 2 nagios_cross_platform_agent 2 business_process_intelligence 1 nagios_network_analyzer 1 nagios_xi_docker_wizard 1 nagios_xi_switch_wizard 1 nagios_xi_watchguard_wizard 1 ndoutils 1 remote_plugin_executor 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy