← Volver a CVEs
CVE-2018-10553
N/ADescripcion
An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindow=../ substrings.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado4/30/2018
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
nagios:nagios_xi
Debilidades (CWE)
CWE-22
Referencias
http://code610.blogspot.com/2018/04/few-bugs-in-latest-nagios-xi-5413.html(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.