Vulnerabilities (CVE)

Filtered by vendor Nagios Subscribe
Filtered by product Incident Manager
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-9204 1 Nagios 1 Incident Manager 2024-11-21 7.5 HIGH 9.8 CRITICAL
SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands.
CVE-2019-9203 1 Nagios 1 Incident Manager 2024-11-21 7.5 HIGH 9.8 CRITICAL
Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API.
CVE-2019-9202 1 Nagios 1 Incident Manager 2024-11-21 6.5 MEDIUM 8.8 HIGH
Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues.