A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-19T00:00:00
Updated: 2024-08-02T18:46:11.239Z
Reserved: 2023-08-22T00:00:00
Link: CVE-2023-40934
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-19T23:15:10.677
Modified: 2023-09-22T01:20:26.570
Link: CVE-2023-40934
Redhat
No data.