Primary

Context

Nagios XI Missing Access Control Vulnerability in Web SSH Terminal

Vulnerability

A missing access control vulnerability has been identified in Nagios XI versions prior to 2024R1. This vulnerability allows remote, low-privileged attackers to access and interact with the Web SSH Terminal interface without proper authorization. Exploitation of this vulnerability could lead to unauthorized execution of commands or disclosure of sensitive information.

Impact

Exploitation of this vulnerability could result in unauthorized access to the Web SSH Terminal, allowing for potential execution of commands or access to sensitive information.

Remediation

Users can update to Nagios XI version 2024R1 or later to address this vulnerability.

Added: Oct 30, 2025, 11:06 PM

Updated: Oct 30, 2025, 11:06 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

10.0

exploitability

5.2

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

10.0

exploitability

5.2

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nagios XI Missing Access Control Vulnerability in Web SSH Terminal

Vulnerability

Impact

Remediation

Affected Products

Nagios XI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating