rpm package
suse/nagios&distro=SUSE Package Hub 15 SP2
pkg:rpm/suse/nagios&distro=SUSE%20Package%20Hub%2015%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-13977 | — | < 4.4.6-bp152.2.3.1 | 4.4.6-bp152.2.3.1 | Jun 9, 2020 | Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerab | ||
| CVE-2016-6209 | Med | 6.1 | < 4.4.6-bp152.2.3.1 | 4.4.6-bp152.2.3.1 | Mar 31, 2017 | Cross-site scripting (XSS) vulnerability in Nagios. |
- CVE-2020-13977Jun 9, 2020affected < 4.4.6-bp152.2.3.1fixed 4.4.6-bp152.2.3.1
Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerab
- affected < 4.4.6-bp152.2.3.1fixed 4.4.6-bp152.2.3.1
Cross-site scripting (XSS) vulnerability in Nagios.