Description
The Fedora Nagios package uses "nagiosadmin" as the default password for the "nagiosadmin" administrator account, which makes it easier for remote attackers to obtain access by leveraging knowledge of the credentials.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1295446
Scores
CVSS v3
9.8
EPSS
0.0035
EPSS Percentile
57.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-798
Status
published
Products (1)
nagios/nagios
Published
Jun 06, 2017
Tracked Since
Feb 18, 2026