Описание
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery (CSRF) in many functions, like adding – deleting for hosts or servers.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:nagios:nagios_core:4.2.4:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01582
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 5 лет назад
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery (CSRF) in many functions, like adding – deleting for hosts or servers.
CVSS3: 8.8
redhat
около 5 лет назад
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery (CSRF) in many functions, like adding – deleting for hosts or servers.
CVSS3: 8.8
debian
около 5 лет назад
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross ...
github
больше 3 лет назад
There is a Cross Site Request Forgery (CSRF) vulnerability in Nagios Core 4.2.4.
EPSS
Процентиль: 81%
0.01582
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352