Prtg Network Monitor
by Paessler
CVEs (28)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-31450 | Med | 0.31 | 4.7 | 0.00 | Aug 9, 2023 | A path traversal vulnerability was identified in the SQL v2 sensors in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the SQL v2 sensors into behaving differently for existing files and non-existing files. This made it… | ||
| CVE-2023-31449 | Med | 0.31 | 4.7 | 0.00 | Aug 9, 2023 | A path traversal vulnerability was identified in the WMI Custom sensor in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the WMI Custom sensor into behaving differently for existing files and non-existing files. This made it… | ||
| CVE-2017-15008 | Med | 0.31 | 4.8 | 0.01 | Oct 4, 2017 | PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all sensor titles, related to incorrect error handling for a %00 in the SRC attribute of an IMG element. | ||
| CVE-2025-67835 | 0.00 | — | 0.00 | Jan 14, 2026 | Paessler PRTG Network Monitor before 25.4.114 allows Denial-of-Service (DoS) by an authenticated attacker via the Notification Contacts functionality. | |||
| CVE-2025-67833 | 0.00 | — | 0.00 | Jan 14, 2026 | Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the tag parameter. | |||
| CVE-2025-67834 | 0.00 | — | 0.00 | Jan 14, 2026 | Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the filter parameter. | |||
| CVE-2024-12833 | 0.00 | — | 0.01 | Feb 11, 2025 | Paessler PRTG Network Monitor SNMP Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Paessler PRTG Network Monitor. Some user interaction on the part of an… | |||
| CVE-2023-51630 | 0.00 | — | 0.02 | Feb 8, 2024 | Paessler PRTG Network Monitor Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Paessler PRTG Network Monitor. User interaction is required to exploit this vulnerability in… |
- risk 0.31cvss 4.7epss 0.00
A path traversal vulnerability was identified in the SQL v2 sensors in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the SQL v2 sensors into behaving differently for existing files and non-existing files. This made it…
- risk 0.31cvss 4.7epss 0.00
A path traversal vulnerability was identified in the WMI Custom sensor in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the WMI Custom sensor into behaving differently for existing files and non-existing files. This made it…
- risk 0.31cvss 4.8epss 0.01
PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all sensor titles, related to incorrect error handling for a %00 in the SRC attribute of an IMG element.
- CVE-2025-67835Jan 14, 2026risk 0.00cvss —epss 0.00
Paessler PRTG Network Monitor before 25.4.114 allows Denial-of-Service (DoS) by an authenticated attacker via the Notification Contacts functionality.
- CVE-2025-67833Jan 14, 2026risk 0.00cvss —epss 0.00
Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the tag parameter.
- CVE-2025-67834Jan 14, 2026risk 0.00cvss —epss 0.00
Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the filter parameter.
- CVE-2024-12833Feb 11, 2025risk 0.00cvss —epss 0.01
Paessler PRTG Network Monitor SNMP Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Paessler PRTG Network Monitor. Some user interaction on the part of an…
- CVE-2023-51630Feb 8, 2024risk 0.00cvss —epss 0.02
Paessler PRTG Network Monitor Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Paessler PRTG Network Monitor. User interaction is required to exploit this vulnerability in…
Page 2 of 2