Webinar: Enabling a 360° View of Your Likely Threats & Security Posture - Watch On-demand Webinar Now!

Threat Advisories

Multiple vulnerabilities in Nagios IT Monitoring Software could be exploited for infrastructure hijacking

May 26, 2021

THREAT LEVEL: Amber.

For a detailed advisory, download the pdf file here.

Nagios fusion is an open-source IT monitoring application that could be exploited by a threat actor to hijack the complete infrastructure. 13 vulnerabilities have been reported in all its version up to 4.1.8.

Vulnerability Details

Patch Links

https://www.nagios.com/downloads/nagios-xi/change-log/

References

https://securityaffairs.co/wordpress/118207/hacking/nagios-it-monitoring-flaws.html

Wormable vulnerability found in Windows HTTP Protocol Stack could result in malicious code execution on the OS kernel

XCSSET malware exploits zero day TCC vulnerability in MacOS