Multiple vulnerabilities in Nagios IT Monitoring Software could be exploited for infrastructure hijacking

Threat Advisories

Multiple vulnerabilities in Nagios IT Monitoring Software could be exploited for infrastructure hijacking

THREAT LEVEL: Amber.

For a detailed advisory, download the pdf file here.

Nagios fusion is an open-source IT monitoring application that could be exploited by a threat actor to hijack the complete infrastructure. 13 vulnerabilities have been reported in all its version up to 4.1.8.

Vulnerability Details

Patch Links

https://www.nagios.com/downloads/nagios-xi/change-log/ 

References

https://securityaffairs.co/wordpress/118207/hacking/nagios-it-monitoring-flaws.html