Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Nagios Core Vulnerability

https://support.nagios.com/forum/viewtopic.php?t=56141

Page 1 of 1

Nagios Core Vulnerability

Posted: Wed Oct 23, 2019 12:50 pm
by sadhana77
Current Nagios version is 4.3.4.
We have identified the below mentioned CVE
1.Nagios Core Denial of Service Vulnerability
2.Nagios Core Local Privilege Escalation Vulnerability.
As I can see Nagios core latest version 4.4.5,upgrading to the latest version from 4.3.4,will resolve the above CVE's? if not we would like to know what the recommended steps to fix the above CVE's.


Thanks & Regards.

Re: Nagios Core Vulnerability

Posted: Wed Oct 23, 2019 1:18 pm
by benjaminsmith
Hello @sadhana77,

Do you have the CVE identifier? If so, please check the change-log to verify whether this has been addressed or not since 4.3.4.

https://github.com/NagiosEnterprises/na ... /Changelog

If you believe this has not been addressed, please send an email to [email protected] with any vulnerabilities found.

See: Nagios: Reporting Security Vulnerabilities
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited