In Nagios XI through 5.8.5, an open redirect vulnerability exists in the login function that could lead to spoofing.
References
Link | Resource |
---|---|
https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT | Release Notes Vendor Advisory |
https://github.com/4LPH4-NL/CVEs | Third Party Advisory |
https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi | Third Party Advisory |
https://www.nagios.com/downloads/nagios-xi/change-log/ | Release Notes Vendor Advisory |
https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT | Release Notes Vendor Advisory |
https://github.com/4LPH4-NL/CVEs | Third Party Advisory |
https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi | Third Party Advisory |
https://www.nagios.com/downloads/nagios-xi/change-log/ | Release Notes Vendor Advisory |
Configurations
History
21 Nov 2024, 06:58
Type | Values Removed | Values Added |
---|---|---|
References | () https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT - Release Notes, Vendor Advisory | |
References | () https://github.com/4LPH4-NL/CVEs - Third Party Advisory | |
References | () https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi - Third Party Advisory | |
References | () https://www.nagios.com/downloads/nagios-xi/change-log/ - Release Notes, Vendor Advisory |
Information
Published : 2022-06-29 01:15
Updated : 2024-11-21 06:58
NVD link : CVE-2022-29272
Mitre link : CVE-2022-29272
CVE.ORG link : CVE-2022-29272
JSON object : View
Products Affected
nagios
- nagios_xi
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')