Nagios Log Server
Moderate fix1 remedy
cpe:2.3:a:nagios:log_server:*:*:*:*:*:*:*
Moderate fix1 remedy
- <= 2024R1.3.1
Nagios Log Server Cleartext API Key Exposure Vulnerability
Vulnerability
Patched
A vulnerability in Nagios Log Server versions prior to 2024R1.3.2 allows authenticated users to access cleartext administrative API keys. This is achieved through a specific API call that retrieves user account information, including API keys, which can lead to unauthorized access and actions within the application.
Impact
Exploitation of this vulnerability allows for unauthorized retrieval of API keys, including those with administrative privileges. This could lead to user enumeration, privilege escalation, and potentially full system compromise by misusing the exposed tokens.
Reproduction
To reproduce this vulnerability, send a GET request to the '/nagioslogserver/index.php/api/system/get_users' endpoint, including a valid API token. The response will contain a list of user accounts with their corresponding API keys in cleartext.
Remediation
Users are advised to update Nagios Log Server to version 2024R1.3.2 or later.
Added: Oct 7, 2025, 8:19 PM
Updated: Oct 7, 2025, 9:23 PM
Vulnerability Rating
Custom Algorithm
spread
1.9impact
5.0exploitability
6.6remediation
7.7relevance
0.7threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.