Volerion logoVolerion
Volerion logoVolerion

Nagios Log Server Privilege Escalation Vulnerability in Logstash Process

Vulnerability

A vulnerability allowing execution with unnecessary privileges has been identified in Nagios Log Server versions prior to 2024R2.0.3. This issue arises because the embedded Logstash process runs as the root user. An attacker could exploit this vulnerability by compromising the Logstash process, potentially through an insecure plugin, pipeline configuration injection, or a vulnerability in input parsing. Such an exploitation could lead to code execution with root privileges, resulting in a full system compromise. To mitigate this risk, the Logstash service has been updated to run as the lower-privileged 'nagios' user.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution with root privileges, allowing for a complete compromise of the system.

Remediation

Users are advised to upgrade to Nagios Log Server version 2024R2.0.3 or above.

Added: Oct 30, 2025, 10:28 PM
Updated: Oct 30, 2025, 10:28 PM

Vulnerability Rating

Custom Algorithm
spread
1.9
impact
10.0
exploitability
7.4
remediation
7.7
relevance
0.8
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.