Current Nagios version is 4.3.4.
We have identified the below mentioned CVE
1.Nagios Core Denial of Service Vulnerability
2.Nagios Core Local Privilege Escalation Vulnerability.
As I can see Nagios core latest version 4.4.5,upgrading to the latest version from 4.3.4,will resolve the above CVE's? if not we would like to know what the recommended steps to fix the above CVE's.
Thanks & Regards.
Nagios Core Vulnerability
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: Nagios Core Vulnerability
Hello @sadhana77,
Do you have the CVE identifier? If so, please check the change-log to verify whether this has been addressed or not since 4.3.4.
https://github.com/NagiosEnterprises/na ... /Changelog
If you believe this has not been addressed, please send an email to [email protected] with any vulnerabilities found.
See: Nagios: Reporting Security Vulnerabilities
Do you have the CVE identifier? If so, please check the change-log to verify whether this has been addressed or not since 4.3.4.
https://github.com/NagiosEnterprises/na ... /Changelog
If you believe this has not been addressed, please send an email to [email protected] with any vulnerabilities found.
See: Nagios: Reporting Security Vulnerabilities
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!