Unrated severityNVD Advisory· Published Oct 7, 2025· Updated Oct 8, 2025
CVE-2025-44824
CVE-2025-44824
Description
Nagios Log Server before 2024R1.3.2 allows authenticated users (with read-only API access) to stop the Elasticsearch service via a /nagioslogserver/index.php/api/system/stop?subsystem=elasticsearch call. The service stops even though "message": "Could not stop elasticsearch" is in the API response. This is GL:NLS#474.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2024R1.3.2+ 1 more
- (no CPE)range: <2024R1.3.2
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.