Primary

Context

Nagios XI Privilege Escalation Vulnerability in MRTG Component

Vulnerability

A privilege escalation vulnerability has been identified in Nagios XI versions prior to 5.5.7, specifically within the MRTG graphing component. This vulnerability arises because MRTG-related processes and scripts are executed with excessive privileges. As a result, a local attacker with limited system access could exploit file and command execution paths, or writable resources, to gain elevated privileges.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation, with potential access to root privileges.

Remediation

Users can upgrade to Nagios XI version 5.5.7 or later to address this vulnerability.

Added: Oct 30, 2025, 11:56 PM

Updated: Oct 30, 2025, 11:56 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

7.5

exploitability

3.8

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

7.5

exploitability

3.8

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nagios XI Privilege Escalation Vulnerability in MRTG Component

Vulnerability

Impact

Remediation

Affected Products

Nagios XI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating