rpm package
opensuse/nagios&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/nagios&distro=openSUSE%20Leap%2015.2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-13977 | — | < 4.4.6-lp152.2.3.1 | 4.4.6-lp152.2.3.1 | Jun 9, 2020 | Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerab | ||
| CVE-2016-6209 | Med | 6.1 | < 4.4.6-lp152.2.3.1 | 4.4.6-lp152.2.3.1 | Mar 31, 2017 | Cross-site scripting (XSS) vulnerability in Nagios. |
- CVE-2020-13977Jun 9, 2020affected < 4.4.6-lp152.2.3.1fixed 4.4.6-lp152.2.3.1
Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerab
- affected < 4.4.6-lp152.2.3.1fixed 4.4.6-lp152.2.3.1
Cross-site scripting (XSS) vulnerability in Nagios.