Primary

Context

Nagvis Livestatus Injection Vulnerability

Vulnerability

Patched

A vulnerability allowing livestatus injection has been identified in Nagvis versions prior to 1.9.47. This issue arises from improper handling of input, which could be exploited to inject headers and manipulate requests.

Impact

Exploitation of this vulnerability could lead to livestatus injection, allowing for unauthorized manipulation of livestatus data or behavior.

Remediation

Users can upgrade to Nagvis version 1.9.47 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

3.1

exploitability

5.9

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

3.1

exploitability

5.9

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nagvis Livestatus Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

NagVis

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating