Nagios Log Server Vulnerabilità

Sequenza temporale

Versione

2.1.3	6
2.0.0	2
2.0.1	2
2.0.2	2
2.0.3	2

Contromisure

Official Fix	4
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	4

Sfruttabilità

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	8

Accesso al vettore

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	8

Autenticazione

Not Defined	0
High	0
Low	6
None	2

Interazione dell'utente

Not Defined	0
Required	6
None	2

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	2
≤6	0
≤7	2
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	4
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	2
<2k	6
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	8
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (17): 2, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.7, 2.1.8

Tipo di software: Log Management Software

Data di pubblicazione	Base	Temp	Vulnerabilità	0day	Oggi	Sfr	Con	CTI	CVE
31/07/2021	3.5	3.4	Nagios Log Server Custom Column View cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35479
31/07/2021	3.5	3.4	Nagios Log Server Dropdown Box cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35478
20/01/2021	4.8	4.8	Nagios Log Server create_snapshot cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-25385
30/07/2020	4.4	4.3	Nagios Log Server Notification Methods Stored cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-16157
16/03/2020	4.4	4.4	Nagios Log Server profile cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-6586
16/03/2020	6.5	6.5	Nagios Log Server cross site request forgery	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-6585
16/03/2020	6.4	6.4	Nagios Log Server Access Control escalazione di privilegi	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2020-6584
03/09/2019	5.2	5.1	Nagios Log Server Login Page Reflected cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2019-15898

altre voci di Nagios

◂ PrecedenteVisione D'insiemeIl prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!