Unrated severityNVD Advisory· Published Oct 30, 2025· Updated Nov 17, 2025

Nagios Log Server < 2024R2.0.3 Non-Empty Default Dashboard Fallback

CVE-2025-34272

Description

In Nagios Log Server versions prior to 2024R2.0.3, when a user's configured default dashboard is deleted, the application does not reliably fall back to an empty, default dashboard. In some implementations this can result in an unexpected dashboard being presented as the user's default view. Depending on the product's dashboard sharing and access policies, this behavior may cause information exposure or unexpected privilege exposure.

Affected products

Nagios/Log Serverllm-fuzzy
Range: <2024R2.0.3
Nagios/Log Serverv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.nagios.com/changelog/mitrerelease-notespatch
www.nagios.com/products/security/mitrevendor-advisorypatch
www.vulncheck.com/advisories/nagios-log-server-non-empty-default-dashboard-fallbackmitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000