Unrated severityNVD Advisory· Published Oct 30, 2025· Updated Nov 17, 2025
Nagios XI < 2024R1.4.2 API Key Disclosure via Neptune Themes
CVE-2025-34283
Description
Nagios XI versions prior to 2024R1.4.2 revealed API keys to users who were not authorized for API access when using Neptune themes. An authenticated user without API privileges could view another user's or their own API key value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Nagios/XIv5Range: 0
Patches
Vulnerability mechanics
References
3- www.nagios.com/changelog/nagios-xi/mitrerelease-notespatch
- www.nagios.com/products/security/mitrevendor-advisorypatch
- www.vulncheck.com/advisories/nagios-xi-api-key-disclosure-via-neptune-themesmitrethird-party-advisory
News mentions
0No linked articles in our index yet.