Page 1 of 1
nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 9:27 am
by rjmon
As per Nagios Site it says
Upgrade the Operations Center component from Admin > Manage Components to version 1.3.3 or above.
I cannot find the Operations center component with the latest version 1.3.3 above. where can i find this package?
Re: nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 9:29 am
by scottwilkerson
What version of Nagios XI are you running?
Re: nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 9:38 am
by rjmon
5.6.12
Re: nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 9:44 am
by scottwilkerson
You should be able to go to Admin > Manage Components
click check for updates
and the "Operations Center" component should show an update
If this doesn't work, you can download the zip below and upload at Admin > Manage Components
https://assets.nagios.com/downloads/nag ... screen.zip
Re: nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 10:21 am
by rjmon
Thanks. I was able to download and install them
Re: nagios xi sql injection vulnerability CVE-2019-20139
Posted: Mon Mar 09, 2020 10:25 am
by scottwilkerson
rjmon wrote:Thanks. I was able to download and install them
Great
Locking thread